The State of Risk-Based Security 2013 - Chapter 2: Management Maturity & Governance

In this section of the study, we evaluate the maturity of risk-based security management programs in organizations. To do that we surveyed 749 U.S. and 571 U.K. security and risk professionals, and collected quantitative and qualitative information about their strategy and governance programs.

Specifically, we examine respondents’ views on risk-based security (including organizational commitments), and the pro- gram’s impact on the business. We also review specific actions related to risk-based security programs, as well as key barriers to program success or growth.