Agenda

• Managing Risk and Security Investments
  • Return on Security Investment (ROSI) challenges
  • Defining security risk
  • Choosing a security framework
• Building an Enterprise Security Program (ESP)
  • Characteristics of an effective ESP
  • Implementing an ESP