Many organizations have competing risk assessment remediation priorities with business objectives and regulatory requirements that are difficult to compare. Normalization techniques can collect and aggregate numerical risk values into comparable data to ensure the organization’s IT resources, legal team, C-Level executives, and key stockholders can jointly prioritize the implementation of controls needed to mitigate risk to a reasonable level.
Attendees will learn:
- Define acceptable risk criteria that can be utilized as a data normalization technique
- View a sample risk register populated with results from different assessments that have gone through the risk data normalization process
Presenter:
Ken Squires, Director of Governance, Risk & Compliance, Sikich
Moderator: Jeff Savoy