Why You Should Convince Your Client To Take A Risk-Based Approach To Security

By Aravind Narayanan, Product Marketing, Vembu Technologies

In general, a client’s idea of security is to evenly distribute security measures over each sector of their firm, widely believed to be the safest approach. I wish to present an alternative, however, with points you can use to convince clients to choose the risk-based approach(RBA).

What Is The Risk-Based Approach?

A risk-based approach, in general is defined as weighing a situation based on the risks involved in it. This way, the high risk factors are taken into consideration based on priority.

Requirements

• First, it’s important to have a clear idea about the goal of the firm and a deep study of the work nature of its modules.
• Understanding these will be helpful in analyzing the risk factors of each sector.
• A list of risks should be made from all sectors and discussed with your client.
• Possibilities of vulnerabilities should be analyzed, and, based on that, each risk should be ranked or voted by a group of members. (Members should be selected from among various departments, choosing people who have in-depth knowledge about the business processes of those sectors as well as the firm.)
• Once the list based on risk is made, safety measures should be implemented.

Please log in or register below to read the full article.