Managing Risk and Information Security Book Summary - Managing Risk and Information Security Book explained in key points

Managing Risk and Information Security summary

Malcolm Harkins

Brief summary

Managing Risk and Information Security by Malcolm Harkins is a comprehensive guide that emphasizes the importance of integrating risk management and security practices in an organization's overall strategy. It offers practical insights and actionable steps to protect valuable information.

Give Feedback
Table of Contents

    Managing Risk and Information Security
    Summary of key ideas

    Understanding the Evolving Landscape of Risk and Information Security

    In Managing Risk and Information Security by Malcolm Harkins, we are introduced to the rapidly changing landscape of risk and information security. Harkins, a seasoned professional in the field, begins by highlighting the shift in the nature of risk, from traditional physical threats to the increasingly complex and interconnected digital risks. He emphasizes the need for a new approach to managing these risks, one that is proactive, adaptive, and aligned with business objectives.

    Harkins argues that the traditional approach to information security, which focuses on building walls and barriers to protect assets, is no longer sufficient. Instead, he advocates for a more holistic approach that not only protects assets but also enables the business to thrive in the face of evolving risks. He introduces the concept of 'protect to enable', which forms the core philosophy of his risk management strategy.

    Shifting from a Defensive to a Proactive Stance

    In the subsequent sections of Managing Risk and Information Security, Harkins delves deeper into the 'protect to enable' approach. He emphasizes the need to shift from a defensive stance, where security is seen as a cost center, to a proactive stance, where security is an enabler of business growth and innovation. He argues that this shift in mindset is crucial for organizations to effectively manage the new breed of digital risks.

    Harkins also discusses the importance of understanding the business context in which security operates. He stresses that security professionals need to align their strategies with the broader business objectives and risk tolerance levels. This alignment, he argues, is essential for security to be seen as an enabler rather than a hindrance to business operations.

    Adopting a Risk Management Mindset

    Continuing his exploration of the 'protect to enable' approach, Harkins introduces the concept of risk management mindset. He argues that security professionals need to think like risk managers, constantly assessing and prioritizing risks based on their potential impact on the business. This shift from a purely technical focus to a more strategic, risk-based approach is critical in managing the new digital risks effectively.

    Furthermore, Harkins emphasizes the need for security professionals to embrace uncertainty and complexity. In the digital world, he argues, risks are not always clear-cut, and security strategies need to be flexible and adaptive to address these dynamic threats effectively.

    Embracing New Technologies and Approaches

    In the latter part of Managing Risk and Information Security, Harkins discusses the role of new technologies and approaches in the 'protect to enable' paradigm. He highlights the potential of emerging technologies such as cloud computing, mobile devices, and big data analytics in transforming security from a barrier to an enabler of business innovation.

    He also introduces the concept of 'security as a service', where security capabilities are delivered as a service, allowing organizations to scale their security operations based on their evolving needs. This approach, he argues, not only enhances security but also enables greater business agility and cost-effectiveness.

    Conclusion: A New Paradigm for Managing Risk and Information Security

    In conclusion, Managing Risk and Information Security by Malcolm Harkins presents a compelling argument for a new paradigm in managing digital risks. By embracing the 'protect to enable' approach, adopting a risk management mindset, and leveraging new technologies and approaches, organizations can effectively manage the evolving digital risks while enabling business growth and innovation.

    Give Feedback
    How do we create content on this page?
    More knowledge in less time
    Read or listen
    Read or listen
    Get the key ideas from nonfiction bestsellers in minutes, not hours.
    Find your next read
    Find your next read
    Get book lists curated by experts and personalized recommendations.
    Shortcasts
    Shortcasts New
    We’ve teamed up with podcast creators to bring you key insights from podcasts.

    What is Managing Risk and Information Security about?

    Managing Risk and Information Security by Malcolm Harkins provides a comprehensive guide to understanding and mitigating information security risks in today's digital world. It offers practical strategies and insights for organizations to protect their valuable data and assets from potential threats and vulnerabilities.

    Managing Risk and Information Security Review

    Managing Risk and Information Security (2016) is a comprehensive guide that explores the world of risk management and information security. Here's why this book is worth reading:

    • Overflowing with practical strategies and techniques, it equips readers with the knowledge and tools they need to effectively protect their information and manage risks.
    • With its in-depth analysis of real-world case studies, the book offers valuable insights into the challenges and best practices of risk management in various industries.
    • By examining the interconnectedness of risk and security, the book emphasizes the importance of holistic approaches and encourages readers to adopt proactive measures in safeguarding their assets.

    Who should read Managing Risk and Information Security?

    • Information security professionals looking to enhance their risk management skills
    • Business leaders who want to understand the importance of integrating risk management into their organization's strategy
    • Students and academics studying cybersecurity and risk management

    About the Author

    Malcolm Harkins is a renowned expert in the field of information security. With over 25 years of experience, he has held various leadership roles in cybersecurity at companies such as Intel and Cylance. Harkins is known for his strategic approach to managing risk and his ability to align security with business objectives. In addition to his book, he has contributed to numerous industry publications and is a sought-after speaker at cybersecurity conferences.

    Categories with Managing Risk and Information Security

    People ❤️ Blinkist 
    Sven O.

    It's highly addictive to get core insights on personally relevant topics without repetition or triviality. Added to that the apps ability to suggest kindred interests opens up a foundation of knowledge.

    Thi Viet Quynh N.

    Great app. Good selection of book summaries you can read or listen to while commuting. Instead of scrolling through your social media news feed, this is a much better way to spend your spare time in my opinion.

    Jonathan A.

    Life changing. The concept of being able to grasp a book's main point in such a short time truly opens multiple opportunities to grow every area of your life at a faster rate.

    Renee D.

    Great app. Addicting. Perfect for wait times, morning coffee, evening before bed. Extremely well written, thorough, easy to use.

    4.7 Stars
    Average ratings on iOS and Google Play
    30 Million
    Downloads on all platforms
    10+ years
    Experience igniting personal growth
    Powerful ideas from top nonfiction

    Try Blinkist to get the key ideas from 7,000+ bestselling nonfiction titles and podcasts. Listen or read in just 15 minutes.

    Start your free trial

    Managing Risk and Information Security FAQs 

    What is the main message of Managing Risk and Information Security?

    The main message of Managing Risk and Information Security is the importance of effectively managing and mitigating risks in relation to information security.

    How long does it take to read Managing Risk and Information Security?

    The reading time for Managing Risk and Information Security varies depending on the reader's speed, but it typically takes several hours. However, the Blinkist summary can be read in just 15 minutes.

    Is Managing Risk and Information Security a good book? Is it worth reading?

    Managing Risk and Information Security is a valuable read for anyone interested in information security. It offers practical insights and strategies for effectively managing risks.

    Who is the author of Managing Risk and Information Security?

    The author of Managing Risk and Information Security is Malcolm Harkins.

    What to read after Managing Risk and Information Security?

    If you're wondering what to read next after Managing Risk and Information Security, here are some recommendations we suggest:
    • Basic Economics by Thomas Sowell
    • The Ascent of Money by Niall Ferguson
    • Think and Grow Rich by Napoleon Hill
    • The 4-Hour Workweek by Tim Ferriss
    • Breakout Nations by Ruchir Sharma
    • Rich Dad, Poor Dad by Robert T. Kiyosaki
    • Secrets of the Millionaire Mind by T. Harv Eker
    • Liar's Poker by Michael Lewis
    • Flash Boys* by Michael Lewis
    • The Richest Man in Babylon by George S. Clason