During the mid-term, each of you discussed the topic in the mid-term, build on your understanding of reading the book and then answer the following main question(s). You should have a writeup of no more than 1500-words writeup.
After reading about the topic currently in risk management:
- Do you think that Saudi Arabia should develop their own Risk Management Standard, similar to the security controls published by the Saudi National Cybersecurity Authority.
- If you have the chance to update some of the current world-wide Risk Standards, what would you update and why?
- What is the biggest limitation you see in the current Risk Standards?
- Finally, if you are a CISO in a current organization, what would you do to manage the security within the organization.