Read "Assess the Risk," by Zurier, from SC Magazine: For IT Security Professionals (2015).
The first step in the creation of an effective risk-management system is understanding the types of risks an organization may face.
Identify three of the most recognized risk categories and then explain why risk is a difficult topic for many organization leaders to discuss.