Organizations looking to improve cybersecurity should reduce IT complexity and pursue a clearly identified strategy for defending the enterprise, says Ron Ross of the National Institute of Standards and Technology. To employ an effective risk-management strategy, "you've got to start at the top of the organization," whether in the public or private sector, Ross says.

Full Story:

Related Summaries