Sign in with Facebook
The three primary goals of an information security program are to prevent the loss of confidentiality, the loss of integrity, and the loss of availability for any IT systems and data.
“ultimate responsibility or ownership for protecting information is at the executive leadership and board of directors level.”
― CISM Certified Information Security Manager All-in-One Exam Guide
― CISM Certified Information Security Manager All-in-One Exam Guide
“The key business record in risk management is the risk register, which is a log of historic and newly identified risks.”
― CISM Certified Information Security Manager All-in-One Exam Guide
― CISM Certified Information Security Manager All-in-One Exam Guide
“Understanding and changing aspects of an organization’s culture is one of the most important success factors in an organization and also one of the most difficult.”
― CISM Certified Information Security Manager All-in-One Exam Guide
― CISM Certified Information Security Manager All-in-One Exam Guide
“A risk consists of the intersection of threats, vulnerabilities, probabilities, asset value, and impact.”
― CISM Certified Information Security Manager All-in-One Exam Guide
― CISM Certified Information Security Manager All-in-One Exam Guide
“An organization’s risk management program should be documented in a charter. A charter is a formal document that defines and describes a business program and becomes part of the organization’s record.”
― CISM Certified Information Security Manager All-in-One Exam Guide
― CISM Certified Information Security Manager All-in-One Exam Guide
Johnson’s 2025 Year in Books
Take a look at Johnson’s Year in Books, including some fun facts about their reading.
76 books
|
90 friends
28 books
|
10 friends
1 book
|
3 friends
26 books
|
8 friends
1 book
|
3 friends
30 books
|
33 friends
0 books
|
9 friends
1 book
|
20 friends
More friends…
Favorite Genres
Polls voted on by Johnson
Lists liked by Johnson
