Cloud & Telecom Security

This evening, I read one whitepaper sent by Paul a few days ago. This is a good whitepaper which covers much CISSP knowledge and financial terms, e.g. probability, NPV, etc. This whitepaper makes a new term – ROSI. It means Return On Security Investment.

This diagram is copied from the whitepaper which is used to illustrate the security investment and attitude. It’s interesting. Actually, security awareness is one of most important jobs of all CISO. They must be very good at promoting security and communicate with financial controllers and business decision makers.

It’s very cool that you can calculate quantitively the return against security investment, even though it must come along with a lot of assumptions.

原来一直坚持这个博客是一个纯粹的技术博客，可是最近西方关于奥运的一些举动非常让人气愤。转帖下面一篇邮件传递的热帖，强烈支持奥运圣火传递！强烈支持北京奥运会！ Read more…