Realistic Risk Management Using the CIS 20 Security Controls

Does your organization spend an inordinate amount of time 'managing' risk, when the current state of security is known to be poor, with far too few resources available to deal with the top issues?
Andrew Baze
August 1, 2016

All papers are copyrighted. No re-posting of papers is permitted