Mar 07, 2013
Strategy: Assessing Risk in Your Enterprise Compliance Initiative
Risk is everywhere, and it’s especially important to understand risk in regulated environments. Within these environments, however, risk management and compliance sometimes overlap only slightly. The goal is to determine where these overlaps exist and how we can leverage one or the other to streamline the efforts of the organization in achieving practical and functional security.
Indeed, no matter what your compliance project, risk is an important element. Many compliance guidelines require a risk assessment; some require that you reduce risk by implementing specific security technologies or practices. In every case, you must weigh the cost of compliance against the risk of noncompliance. But how do you go about measuring risk in a compliance project? This report offers a look at the various roles that risk plays in compliance and offers some recommendations on how to use risk measurement to support your compliance efforts. (S6650313)