Connect with us

Intelligence

Big Data and the new techniques of government political and strategic decision-making

Published

on

Some considerations on Big Data.

As is now well-known, it is a technology which mainly  deals with collecting, processing and selecting a huge quantity of different data.

As in some Hegel’s works, here Quantity immediately becomes Quality. The mass of data and the link between them change – hence also its meaning and use change.

A technology or, rather, a series of technologies joined together, which processes many terabytes (2 at the power of 40 bytes, equivalent to 1,048,576 megabytes) at the same time. A huge amount and, above all, simultaneously. Another type of quantity that is immediately turned into quality.

After the creation of the International Telecommunication Union in Geneva in 2017, still led by the Chinese Houlin Zhao, we have some addition alfacts to evaluate the extraordinary relevance of the Big Data Science.

Meanwhile, just the everyday processing-collection of huge amounts of news allows -also by comparison only – the discovery of many new data and often even of industrial or state secrets.

Moreover, if data can be treated with different chains of meaning at the same time, it will be revealed in all its importance and, often, in roles different from those with which we are used to interpret it.

This is obviously essential to make the economic, financial, political, military or intelligence leaders’ analyses and decisions accurate and effective.

Approximately 90% of the data currently present in the world has been generated over the last two years. It seems impossible, but it is so.

Furthermore, every day 2.5 quintillion of new news  (every quintillion is 10 at the power of 13) add to the big data networks alone, but 80% of this mass is non-analyzed and cannot be studied with the usual comparative technologies, whatever the speed with which we employ them.

According to other models for analyzing the global news flows, in 2010 over 1,2 zettabytes – i.e. 10 at the power of 21 bytes, equivalent to a sextillion of bytes – were produced in one year only, while in 2020 a total of 35 zettabytes a year will be produced.

Hence the larger the quantity and the form of big data, the lower our ability to use it, if not with very advanced technologies. However, the larger the quantity of big data, the greater the need to choose the policies to be adopted on the basis of these quantities.

Hence, if the world produces all this data, it is inevitable to consider at least the reason for its huge dimension. Hence even the problems are as big as Big Data.

Just think of environmental and ecological issues or of energy and Internet networks.

It seems almost a paradox, but it is inevitable that nowadays the political, military and strategic decision-making is based on a quantity of news by far exceeding what –  in the best cases – happened in the twentieth century alone.

Governments, however, mainly need the intrinsic predictive ability these new technologies have.

Certainly big data is currently needed – for example – to predict-manage car traffic in large areas and to  organize health, as well as for protection from terrorist attacks or even for environmental protection and protection from natural disasters.

Nevertheless, the Big Data technology is particularly useful for evaluating the development trends of very complex phenomena – trends which become visible and statistically relevant and which are anyway generated only on the basis of huge amounts of data.

However, we are heading for decision-making quantification which is possible, both technologically and ethically, because the huge amount of data collected is anonymous, already structured and, above all, processed for strictly statistical purposes.

With specific reference to military and strategic defense and to intelligence, in particular – which are already the strength of big data technologies – the progress in news gathering stems from the creation of the new In-Q-Tel company “incubator” – at least for the main US intelligence service, namely CIA.

It is the non-profit company which analyzes and later invests in the most technologically advanced projects, or at least in those where there is some relevance for intelligence.

The initial idea for investing in Big Data – at least for the USA and its agencies – was to avoid the most serious mistakes of Human Intelligence (Humint).

As had already happened in Iraq or, previously, in the Lebanon. Still today, however, data is catalogued according to the old system which divides it into structured, semi-structured and non-structured data.

The first class is the one in which each storage element has at least four singular characteristics identifying it. The second class has only some designation features, which are never fully used.

The class of news that currently expands most is obviously that of non-structured data.

Nevertheless the sequence of news to be gathered is more complex: in addition to the typical intelligence collection, there is the operation of cleaning, noting and representing data in such a way that it is readily available for analysis. Furthermore data needs to be processed and specific algorithms to be created, while mechanisms of news similarity must be developed so as to extrapolate  the news  needed, which are probably not known to human users.

A technology known as data mining.

Algorithms also operate to create data collection models for computers, which can continuously teach computers how to refine their search.

This is what is known as machine learning.

Computers learn from a set of data, defined as “examples”, in an automatic process called learning – hence they automatically adjust their algorithms so as to attribute values and categories already known to examples not yet classified, without deleting or changing the incoming data.

In more practical terms, the thematic big data collections and the creation of examples can permit the wide use of the  automatic transcription of audio conversations, with a view to making them usable through key words. Then a sentiment analysis can be made through the reactions on social media. Hence mapping the reaction of the population to an event, a stance, a future law or a future trade war.

There is also – among others – the Geofeedia software, another example of sectoral use and machine learning in the Big Data sector, which is a platform enabling analysts to check the social media in geo-localized areas.

In the case of the analytical process, the large “trawlers” of Big Data are mainly needed to define the most probable strategic scenarios in the future or to create more specific and operative working assumptions in the intelligence field, or to analyze the opinion trends of the public and of the debate within the party and Parliamentary ruling classes.

All this is certainly not enough, because the intelligence that matters is like the black pearl or the black swan, or the particular correlation that – if tested within a range of options – creates the most rational choice or, possibly, even the most obvious one for the leadership of an opposing country.

Here the issue does not lie in collecting all the stamps of New Guinea, but to find the penny black that nobody had seen so far.

Nevertheless the analysis of the popular sentiment, or of the most obvious development trends of a social, financial or natural phenomenon, certainly guarantees that these options will be very probable and above all less “polluted” by adverse operations.

Or is this not the case? Indeed, the trolls’ actions  are mainly related to the hybrid war and to the great operations of what -at the time of Cold War – was called dezinformatsjia, literally “disinformation” in Russian.

However, while in a pre-IT phase before the world dimension of the World Wide Web, doing disinformation meant targeting a certain sector of the adversary to fill-saturate it with fake news, which would naturally lead to a wrong decision (to be manipulated as enemy’s mistake or  incapacity) or to a decision-making block, or to the decision that the Enemy wants you to take. Everything changes, however, with the trolls, which are a result of Big Data.

Trolls are anyway subjects who interact on the Web with the other participants without disclosing their identity.

Hence the trolls always operate with huge amounts of data that shield them from others’ sight. They enter the social media of vast user communities and finally react so as not to ever disclose their true nature. They often split and create other trolls.

Hence currently online dezinformatsjia operates with large data sets, such as Big Data, and affects the vast masses of Web users with a view to changing their perceptions, their political action – even on the Web -as well as blocking any reaction in the masses penetrated by an Enemy and, indeed, create a new self-image for them.

Much data, many features with which to hide the new identity of users-adversaries – and the more they are flooded with data, the more they will forget their old identity.

This is the action of a troll in the “hybrid war” and hence  in what we could today define as an automated “mass psychological war”.

Currently there is both a symmetrical and opposite relationship between the Big Data of two enemy countries – as in the series of frescoes known as The Allegory of Good and Bad Government, painted by Ambrogio Lorenzetti and hosted in Siena’s Palazzo Pubblico.

On the one hand, the Angels ensuring justice – the  typically Aristotelian, “commutative” or “distributive” justice – on the other, the Bad Government, the devilish tyrant who administers cruelty, betrayal and fraud, which are the opposite of the three theological-political virtues of the Good Government.

Hence, in more topical terms, Big Data is an extraordinary equalizer of strategic power – there is no longer small or large country, nor even non-State communities, compared to traditional States, which cannot wage a fight – even invisible to the most – with major powers.

Nevertheless, reverting to the current strategic and technological situation, Big Data will have many unexpected effects, at military and geopolitical levels, that we can summarize as follows: a) all “high” and “low” communication will become mobile and geo-localized social media.

Hence, in the future, intelligence will increasingly deal with the selective dissemination of its data, as well as with their careful spatial-personal determination and with their specification according to areas and receptors.

We will have an increasingly tailor-made intelligence. Furthermore, b) the Big Data challenge is somehow the opposite compared to the old Cold War-style technology.

While, in the past, the data collected ranged from Much to Little, looking for the confidential or secret information that changed the whole geopolitical perspective, nowadays it ranges from Much to Much, because the collection of declassified data – if well-processed – generates confidential news and information that are often unknown even to those who generated them.

Currently the secret is a whole technology, not just a mere datum or fact.

It is a technology changing according to the data it processes, precisely at the moment when it processes it.

Furthermore, c) the future “Big Data” solutions will be modeled and increasingly user-friendly.

They will often be intuitive and hence available also to medium-low level operators in the field.

The old division between “analysis” and “operations” will no longer exist. The true or fake news will be so manifold as to become – as such – war actions.

No longer messages to the ruling classes, but mass signals to the masses or selective operations for individual groups.

Moreover, d) the all-pervasive nature of the Web will be such as to create both new information opportunities and unavoidable “holes” that the Enemy will exploit easily.

Nor should we forget the use of other new technologies, such as laser optical space communications, which will make military and “service” communications safer – although further challenges, such as the new encrypted and adaptable “Internet of things”, will already be on the horizon.

In essence, in the intelligence field, Big Data will match  the human operators’ analytical potential, thus making them often capable of operating in restricted and selected areas with a speed equal to that of the perceived threat.

A sort of “artisanalisation” of the intelligence Services’ analysis, which will incorporate more data from the action field and will be ever less controllable ex-ante by some central political authorities.

Again thanks to the huge amounts of incoming data (or data targeted to the Enemy), there will be vertical integration between strategic analysis and top political decision-making, while both analytical and operational choices will be entrusted to local units, which will see an ever-increasing integration between operators and analysts.

We must not even forget, however, the real military technologies: the analysis of social networks, which can be automated, at least at the beginning, and manipulate both the popular sentiment and the adversary technologies.

Furthermore the automatic update of the weapon systems networks, increasingly integrated via the “Internet of Things”, as well as intelligence and the analysis of trends for tactical operations. Finally the activity based intelligence, i.e. a methodology – again supported by IT networks – which allows the analysis of even microscopically anomalous behaviors of the enemy’s small patterns of life.

There will be new types of analysis and hence new collections of large (and new) data.

Hence not only Big Data, but new storage for new classes of data.

Moreover, we should not forget a real cultural revolution that all what is very advanced technology will make  absolutely necessary.

Hence, while in the past the intelligence area was well defined and regarded a (not always easy) correct perception of the national interest or the position of one’s own stable international alliances, currently – thanks to Big Data -all this becomes not obsolete, but anyway very different from the logic of Nation-States.

Nowadays, for example, the analysis of intelligence Services – at least of the most advanced ones – will be increasingly oriented to the creation-verification of the different fault lines of the opposed public opinions, or to a new sector we could define as “political intelligence”, which is no longer just the manipulation of the enemy ruling classes, but not even the current mass dezinformatsjia spread through Big Data.

In the future, I already see the creation of diversified managerial classes from outside, with the distribution of technologies which is allowed or forbidden depending on the geopolitical choices of one or more adversaries. Hence we shall imagine a new intelligence which, unlike what currently happens, plays a role in the determination of the international “value chains” and in the global distribution of work, but above all of the technologies that enhance it.

Everything will take place ex ante and ever less ex post. Nevertheless this implies a transformation of the ruling  classes and hence a profound change in their selection.

Advisory Board Co-chair Honoris Causa Professor Giancarlo Elia Valori is an eminent Italian economist and businessman. He holds prestigious academic distinctions and national orders. Mr. Valori has lectured on international affairs and economics at the world’s leading universities such as Peking University, the Hebrew University of Jerusalem and the Yeshiva University in New York. He currently chairs “International World Group”, he is also the honorary president of Huawei Italy, economic adviser to the Chinese giant HNA Group. In 1992 he was appointed Officier de la Légion d’Honneur de la République Francaise, with this motivation: “A man who can see across borders to understand the world” and in 2002 he received the title “Honorable” of the Académie des Sciences de l’Institut de France. “

Continue Reading
Comments

Intelligence

Indian Chronicle: Exposing the Indian Hybrid warfare against Pakistan

Published

on

In recent years Indian hybrid warfare against Pakistan has intensified manifold to malign Pakistan Internationally through disinformation and propaganda tactics. Hybrid warfare has mainly been described as achieving war-like objectives with the help of fake news, disinformation, and propaganda. The Objectives of Hybrid warfare are mostly to secure long term victory against the opponent. Similarly, India has launched massive hybrid warfare against Pakistan, which was uncovered by EU DisinfoLab in its report called “Indian Chronicle”.

EU DisinfoLab is an independent organization working to expose and tackle disinformation campaigns targeting the European Union and its member states. The organization has claimed that the disinformation campaign against Pakistan has been active since 2005, “a massive online and offline 15-year ongoing influence operation supporting Indian interests and discrediting Pakistan internationally”.

In a recent investigation EU DisinfoLab has exposed a malicious Indian campaign against Pakistan. In the report, “Indian Chronicle” EU DisinfoLab has exposed the dubious use of media outlets, NGOs, and fake personnel by India to malign Pakistan. The disinformation campaign mainly targeted the United Nations and the European Union through more than 750 fake media outlets and 10 fake NGOs. According to the report, “uncovered an entire network of coordinated UN-accredited NGOs promoting Indian interests and criticizing Pakistan repeatedly. We could tie at least 10 of them directly to the Srivastava family, with several other dubious NGOs pushing the same messages.”

According to the report the disinformation campaign is supported by the Srivastava group. The Srivastava group has helped in “resurrected dead NGOs” to spread fake news. The report says that “Our investigation led to the finding of 10 UN-accredited NGOs directly controlled by the Srivastava Group, which our full report introduces at length. Their common trait? The fact that they all rose from the ashes of real NGOs. Indian Chronicles effectively benefited from the track record of these organizations while pursuing their agenda: discrediting Pakistan and promoting Indian interests at UN conferences and hearings,”.

Moreover, Asian News International (ANI), a major news agency in India has provided a platform for suck fake news campaigns. The aim of the Srivastava group and ANI media outlet is “to reinforce pro-Indian and anti-Pakistan (and anti-Chinese) feelings” in India, and “internationally, to consolidate the power and improve the perception of India, to damage the reputation of other countries and ultimately benefit from more support from international institutions such as the EU and the UN”.

The report claim that the organizations funded by the Srivastava group-sponsored trips for European Parliament members to Kashmir. “The organizations created by the Srivastava Group in Brussels organized trips for Members of the European Parliament (MEPs) to Kashmir, Bangladesh, and the Maldives. Some of these trips led to much institutional controversy, as the delegations of MEPs were often presented as official EU delegations when they were in fact not traveling on behalf of the Parliament,”. Such sponsored trips aimed to build a positive image of India, while spreading disinformation about the alleged claims of Pakistan-sponsored terrorism in Kashmir.

Moreover, India has been actively involved in portraying Pakistan as a terrorist-sponsored state through its disinformation and fake news technique. For instance, India is lobbying strongly at FATF to put Pakistan on the blacklist.

India has also supported and sponsored Baloch separatist leaders and spread disinformation through their fake media outlets as mentioned in the EU DisinfoLab report.“These UN-accredited NGOs work in coordination with non-accredited think-tanks and minority-rights NGOs in Brussels and Geneva. Several of them – like the European Organization for Pakistani Minorities (EOPM), Baluchistan House, and the South Asia Democratic Forum (SADF) – were directly but opaquely created by the Srivastava group,”one of the examples is Kulbhushan Jadhav, an Indian spy who was captured in Pakistan.

The Indian Chronicle report has exposed the dubious face of India and the administrative structure of the United Nations and the European Union. Indian involvement in the spread of disinformation and resurrection of dead people and NGOs has exposed its long-standing for Human rights and democracy. Meanwhile, the reports have also exposed the administrative structure of the UN and EU, as they failed to notice the activities of fake UN-accredited NGOs and spread of disinformation through their affiliated NGOs.

Continue Reading

Intelligence

Hybrid Warfare: Threats to Pakistani Security

Published

on

‘Victory smiles upon those who anticipate the changes in the character of war’-Giulio Douhet

Hybrid threats are becoming a norm in Pakistan and if we want to move forward in this age of technological advancements, cybercrimes, and the use of social media, we must have a wholesome response mechanism.

Hybrid warfare is a military strategy that employs not only conventional forms of warfare but irregular with it as well. It involves propaganda, cyber-attacks, state-sponsored terrorism, electoral intervention, and many more means of multi-dimensional approaches towards war which are used by militarized non-state actors. The term ‘Hybrid’ came into use around 2005-2006 due to the Israel-Hezbollah war (“Lessons from Lebanon: Hezbollah and Hybrid Wars – Foreign Policy Research Institute” 2016) and became a hot-topic in 2014 after the annexation of Crimea. Using non-confrontational means can lead to internal struggles and crumbling of the target. What direct force won’t get you can be easily achieved by infiltration and multi-faceted resources. It’s neither character of war nor its outcome that defines it as a hybrid war, but the changing tactics (“State and Non-State Hybrid Warfare” 2018). In a world where everyone, from wealthy states to those caught in throes of hunger, is armed to the teeth, there are ways to achieve socio-political objectives through the use of violent and non-violent non-state actors.

Pakistan – A Target

Pakistan has risen to incredible heights despite it being a relatively young nation and this is only proved further by the interest international players have in its internal workings. Several factors contribute to the important stature Pakistan holds in the international community such as the Pak-China alliance, its geostrategic location, military aptitude, Russian interests in the Indian Ocean, Deep Sea Gwadar Port (One Belt One Road Project), neighbor to Afghanistan (a country existing as a battleground for proxies), etc. All these reasons make sure to keep Pakistan on the radar.

Though it may be secure militarily, Pakistan is still vulnerable to hybrid threats due to internal dynamics, numerous conflicting interests of nations in state-affairs, and increasing non-state actors. South Asian nuclearization has all but guaranteed that a full-fledged war between Pakistan and India is unlikely therefore the latter uses hybrid warfare to weaken Pakistan from within.

Evolutionary Nature of War

There was truth to Heraclites’s words when he claimed that change is the only constant in our world. The social theory of evolutionary change tells us that individuals, communities, societies, and states are always in a state of motion, continuously evolving according to the era. War is born from man, it is only fair that if a man changes, so shall war. It has become more complex; the stakes have raised from territorial boundaries to the maintenance of world order and preservation of state sovereignty. Wars are no longer fought on the borders, skirmishes aside, the real destruction takes place within. Due to the paradigm shift after the Cold War (Ball 2018), there rose a need for legal, economical, socio-political, and informational means of warfare. It is used as a way to undermine other nation-states in pursuit of national power; the international system is not only a race but also a way to tear others down.

Threats to Pakistani Security

To secure Pakistan from all sides, we must first analyze the threats it faces from all sides. Conventional Warfare used to be seen as one dimensional and it only perceived assault to be done through the land, air, or sea channels. However, now it is fought in various intangible zones.

·         External

India

India is a budding regional hegemon due to its political and economic growth including hidden agendas. Pakistan is perceived to be a direct threat to India especially after the launch of the CPEC project, perceived to be undermining its hold over the region, which is why it is employing stratagems of hybrid warfare to internally weaken Pakistan. Till now India has used State-Sponsored terrorism, funded insurgencies, operated terror cells, and even sent fighter jets into Pakistani Airspace as an attempt to ruin its reputation in the international community.

Afghanistan

There has been growing instability in Afghanistan which has led to mass migrations across the porous border into Pakistan, with around 1.4 million registered Afghans (United Nations High Commissioner for Refugees 2018) and 1 million unregistered (“Amnesty International” 2019). India has its claws in Afghan matters as well and will use it to exploit Pakistan’s weaknesses even after US forces leave the arena. Afghan Government’s poor administrative capability especially after the return of DAESH (Tribune 2020) and Tehrik-e-Taliban Afghanistan are threats to Pakistan as well as regional peace and are a major cause of lawlessness in the country and has a spillover effect for its neighbors.

Iran

Ideologically speaking, Iran is a sectarian threat to Pakistan and its Port Chahbahar stands to lose active traffic once CPEC is fully functional which means it stands as an instigator of hybrid warfare and it would be a risk to overlook it based on past good relations.

USA

Even after the Cold War, strategic rivalry and animosity between the powers including Russia, America, and China still exist. The emergence of China as an economic superpower is perceived as a threat to the US due to which there is a major shift in its defensive posture towards the region.

The US has shown significant interest in Pakistan due to its geo-strategic location but not all interest has yielded positive results. They carried out a surgical strike for the capture and assassination of Osama-Bin-Laden. Such a breach of sovereignty and security is a hybrid threat.

·         Internal

Sectarian

There are several lobbies in Pakistan all vying for their own cause. The Iranian lobby has sectarian undercurrents. Sectarianism has always been one of the leading factors of the divide in the Muslim civilization and is the rising trend of terrorism.Such conflict itself is volatile and is deepening the rift between different sects(Shia-Sunni) of Pakistan, causing unrest.

Economic

Rising prices of commodities such as flour and sugar can lead to social unrest and discord. Such industries and their stocks are under the thumb of a select few, the elites. With the right bribes and conditions, even they would agree to sell out society.

Non-State Actors

Non-state actors are groups or organizations that have influence in the state but work independently and have their socio-political agendas (“Towards a Typology of Non-State Actors in ‘Hybrid Warfare’: Proxy, Auxiliary, Surrogate and Affiliated Forces” 2019). They work on political opportunities and mobilized grievances. Groups like BLA (Balochistan Liberation Army), TTP (Tehrik-e-Taliban Pakistan), and Lashkar-e-Taiba (LeT) are some of the major actors. Pakistan needs to focus on curbing Jihadist Terrorism as it is keeping it from leaving the grey list of FATF.

·         Technological

Information

It refers to the spread of miscommunication. Propaganda and circulation of false news through social media are a relatively common way to cause turmoil in a community. Once a rumor is circling, there is no way to erase it. India claims that Pakistan is spreading the false narrative of ‘Islam being in danger’ to justify its actions, although untrue, is something that the Indians fully believe now. That Pakistani Intelligentsia is made solely to create narratives under which to attack India. Such beliefs further antagonize the states against each other.

Indian Chronicles are a prime example of information warfare being waged against Pakistan.

Cyber

Channels such as Cyber-Jihad and Dark Web come under the purview of cyber warfare and are a threat to the fabric of society and its security in Pakistan.

Given the above discussed bleak prevailing internal security situation, Pakistan needs to formulate a short to mid and long-term response that curbs all external and internal parties alongside proxies from infiltrating and influencing the working of the state and affecting the masses.

For a full-spectrum approach, all domains should be covered such as diplomacy, defense, internal and external security, economic, informational, cyber, and media security.

There are steps to be followed through for active and effective quelling of hybrid threats. First, a strategy must be put for, then tactical action should be taken and lastly, the implementation process should be supervised and fully followed through.

The main focus of the state should be on deterrence towards, protection from, and prevention of hybrid threats to the state.

One must not forget that Hybrid war is a mix of both unconventional and conventional warfare, therefore a nation-wide response should include the intertwined operational capabilities of armed forces alongside political actors. Pakistan sees its security being threatened both by internal factors and external hostile/proxy elements. This is hampering state development. State-building and nation-building must go hand in hand if counter and deter such threats effectively.

Continue Reading

Intelligence

The Impact of Management in Information Security

Published

on

Authors: Sajad Abedi and Mahdi Mohammadi

Due to the increasing role of information security in the management of any society, public and private organizations and institutions are inevitably required to provide the necessary infrastructure to achieve this. In addition to material resources, management techniques also have a great impact on the optimal and successful implementation of information security management systems. The recording of management standards in the field of ICT information security can be designed in a planned way to change the security situation of organizations according to the needs of the organization and ensure security in terms of business continuity and to some extent at other levels (crisis management and soft war). Despite extensive research in this area, unfortunately for various reasons, including the level of security of the issue for governmental and non-governmental institutions or the direct relationship of the field with their interests, clear and useful information on how to implement and prioritize the implementation of a system over the years. The past has not happened until today.

The protection of the organization’s information resources is essential to ensure the successful continuation of business activities. The fact that information and information assets play a key role in the success of organizations has necessitated a new approach to protecting them. Until now, risk analysis and management has been used to identify the information security needs of the organization. After analyzing the risks, security controls were identified and implemented to bring the risks to an acceptable level. But it seems that risk analysis is not enough to identify the information security needs of the organization. Evidence of this claim is that risk analysis does not take into account legal requirements, regulations and other factors that are not considered as risk, but are mandatory for the organization.

Identifying, assessing and managing information security risks is one of the key steps in reducing cyber threats to organizations and also preventing the unfortunate consequences of security incidents that make organizations more prepared to face cyber risks. The risk assessment process, which is the first phase of a set of risk management activities, provides significant assistance to organizations in making the right decision to select security solutions. Risk assessment is actually done to answer the following questions: * If a particular hazard occurs in the organization, how much damage will it cause? * What is the probability of any risk occurring? * Controlling how much each risk costs. Is it affordable or not? The results of risk assessment can help in the correct orientation in choosing solutions (which is to eliminate the main threats) and can also be used in formulating and modifying the security policies of the organization. Risk management is a comprehensive process used to determine, identify, control, and minimize the effects and consequences of potential events. This process allows managers to strike the right balance between operating costs and financial costs, and to achieve relevant benefits by protecting business processes that support the organization’s goals. The risk management process can greatly reduce the number and severity of security incidents that occur in the organization. Risk management has 5 steps, which are: 1. Planning: At this stage, how to manage potential risks in the organization is determined and completed by developing a risk management plan. This plan defines the risk management team, defines the roles and responsibilities of individuals and the criteria for assessing identified risks. Documented. 2. Identification: At this stage, team members gather around each other, identify potential hazards, and record them in the organization’s risk list. Arranging group brainstorming sessions is a good way to identify hazards 3. Assessment: In this step, the assessment of identified risks is performed using the criteria defined in the risk management plan. Risks are assessed based on their probability of occurrence and possible consequences.

Continue Reading

Publications

Latest

Trending