Certainly, security professionals must be totally capable of evaluating risk, but, more importantly, in any organization, it is becoming more necessary to communicate that risk to management in a way that gets a buy-in and support for truly being able to mitigate that risk for the organization.

With that in mind, we suggest you read a recent article published in Dark Reading, and authored by Tim Wilson.  Much of the material in the article comes from a series of speakers and presentation made at the recent CSI Annual Conference - 2009 .

Read the full article.