Information Risk Management Overview

Information Risk Management August 2008 Elvin Chan Marsh Risk Consulting – Asia

Recent Concerns about Personal Data Privacy ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Some Statistics about Personal Data Privacy # of internal personally identifiable information violations per year ,[object Object],[object Object],Source: 2007 Privacy and Data Protection Survey, DTT # of records lost in a single most significant data breach

Some Statistics about Personal Data Privacy Elements implemented in the information risk management system ,[object Object],[object Object],Source: 2007 Privacy and Data Protection Survey, DTT

Question? Despite the effort spent in different elements of the information risk management system, there are still a significant number of data breach, especially internally WHY?

Personal Data (Privacy) Ordinance Overview ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Personal Data (Privacy) Ordinance Implications of some judgments ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Information Risk vs Information Risk Management Beyond Information Technology and Cyber Risks: Systems & People COMPLIANCE PROTECTION TECHNOLOGY MANAGEMENT SYSTEM CULTURE PRACTICES & PROCEDURES EFFICIENCY GROWTH INFORAMTION LEAKAGE INTELLECTUAL PROPERTY THEFT UNAUTHORIZED ACCESS IDENTITY THEFT

Information Risk Management Core Issues – Systems and People ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Information Risk Management The Four Pillars ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Information Risk Management The Four Pillars ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Information Risk Management The Four Pillars ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

An Illustrative Example Consumer Credit Data ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

An Illustrative Example Issues at activity level ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

An Illustrative Example Issues at process and organizational levels ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Information Risk Management Overview

Empfohlen

Empfohlen

Weitere ähnliche Inhalte

Was ist angesagt?

Was ist angesagt? (20)

Andere mochten auch

Andere mochten auch (20)

Ähnlich wie Information Risk Management Overview

Ähnlich wie Information Risk Management Overview (20)

Information Risk Management Overview