Gartner Says Risk-Based Approach will Solve the Compliance vs Security Issue
Infosecurity Magazine | August 08, 2013
“Organizations must change this reactive, check-the-box mindset and start viewing compliance as a risk,” said Wheeler. His view is that in a risk-based approach to security, compliance is provided by security – security is not necessarily provided by compliance.