Security programs often look great on paper but when it comes to following through, it can be difficult to say the least. Optiv Security Inc. says it’s tackling this problem with its latest solution, Risk Transformation Service, unveiled at last week’s RSA Conference 2019 in San Francisco.
The security solutions integrator announced two Risk Transformation Service options: the Enterprise Risk Transformation Service, helping organizations drive risk transformation based on day-to-day objectives, and Quickstart Risk Transformation Service, designed to help mid-sized businesses execute a risk transformation roadmap.
Business resilience require new risk and compliance principles, said Dustin Owens, Optiv’s vice-president of risk advisory.
“As IT risk management evolves to more holistic operational risk management, it is being integrated into the fabric of organizations. This means that security teams are now a critical component to the overall business risk strategy,” he said in a statement. “As a result, adaptive, risk-based decision-making is becoming core to business agility and resilience, taking over from the antiquated check-the-box, compliance-based approach of the past. It’s high time for companies to embrace the risk revolution. They need to take a stance against the outside-in approach – which is predicated on continuously responding to legislative and regulatory requirements, specific threats, and other outside factors – and rewrite how they manage cybersecurity by proactively addressing all aspects of cybersecurity risk, including privacy and governance, cyber resilience, and risk optimization.”