From the course: Soft Skills for Information Security Professionals
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
The language of risk
From the course: Soft Skills for Information Security Professionals
The language of risk
- One of the keys to being successful at improving your organization's security is to stop talking about security and start talking about risk. Perfect security may be achievable, but it's not practical. If you take away employees' laptops and give them typewriters, there's no fear of security breaches, but they won't be able to get their work done. It's far more helpful to frame the conversation around the idea of risk. There are vulnerabilities in your organization, and there are threats both inside and outside your organization that might take advantage of those vulnerabilities. Let's ask a different question. When would you use unencrypted Wi-Fi? During my pen test, I've used tools that monitor unencrypted Wi-Fi for usernames, passwords, and session tokens. I've used tools that let me redirect users to websites I controlled. I've used tools that let me inject my own audio, video, and image files into their…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.