Risk Session II
From AFCEAWiki
Contents |
[edit] Session II: How do we Measure Risk?
JOIN THE ONGOING SOLUTIONS DIALOGUE ON THE GOOGLE GROUP SITE
[edit] Abstract
Incumbent in the concept of Risk Management is the notion of being able to measure risk. This panel session will explore the ability to effectively measure the risk of posture of IT networks and the value of doing so. How can the risks associated with IT networks be measured? What are the key factors to be considered? Given that a single vulnerability in a network can lead to compromise, is the notion of risk measurement & risk management meaningful? Do risk measurement techniques have sufficient granularity to allow insight into the relative advantage between alternate countermeasures? Are there tools or specific techniques that are viewed as being of particular utility in considering these factors when one is designing a network architecture? Are there any insights into how to consider the value of intellectual property, historical transaction data, business continuity, and other non-tangible assets when measuring risk?
[edit] Moderator
- Mr. Joe Grace, Grace and Associates
[edit] Panel
- Mr. Curtis Levinson, CSO & Director, Information Assurance, Qwest Government Services, Inc.
- Ms. Anna Noteboom, IA Solutions Architect, Avaya Federal Solutions
- Mr. Trent Pitsenbarger, Technical Director, Systems and Network Analysis Center, NSA
- Ms. Margaret Salter, IA Directorate, Vulnerability Analysis and Operations, NSA
- Mr. Jeff Waters, Director of Federal Operations, Securify
