9 Questions to Improve IoT Risk Management
As companies increasingly leverage the Internet of Things to improve efficiency, global IT association ISACA has released new guidance for firms grappling with the technology — which can significantly increase both value and risk.
ISACA urges companies to ask nine critical questions as they consider IoT:
- How will the device be used from a business perspective, and what business value is expected?
- What threats are anticipated, and how will they be mitigated?
- Who will have access to the device, and how will their identities be established and proven?
- What is the process for updating the device in the event of an attack or vulnerability?
- Who is responsible for monitoring new attacks or vulnerabilities pertaining to the device?
- Have risk scenarios been evaluated and compared to anticipated business value?
- What personal information is collected, stored and/or processed by the IoT device?
- Do the individuals whose information is being collected know that it is being collected and used, and have they given consent?
- With whom will the data be shared?
Energy Manager News
- Better Buildings, Better Plants: 12 Success Stories
- CA Governor Signs Bill Clarifying PACE Disclosures
- CA School District to Get 73% of Energy From Solar Carports
- Two Critical Questions to Ask Yourself About Your Current Energy Contract
- Pepco and Exelon Say Customers Have Benefitted$440 Million Since Merger
- ICC Issues Stringent Consumer Protection Rules For Retail Electric Suppliers
- Tesla’s Battery Storage Device Put to Use. Time to Exhale?
- Variable Speed Drives are a Powerful Efficiency Tool