- Subject index
This is the first book to introduce the full spectrum of security and risks and their management. Author and field expert Bruce Newsome helps readers learn how to understand, analyze, assess, control, and generally manage security and risks from the personal to the operational. They will develop the practical knowledge and skills they need, including analytical skills, basic mathematical methods for calculating risk in different ways, and more artistic skills in making judgments and decisions about which risks to control and how to control them.
Chapter 10: Controls and Strategies
Controls and Strategies
This chapter explains controls and strategies—the actual things under our control that affect our risks. The two main sections of this chapter define control and explain when and why controls are applied to risks and define strategy and explain when and why to choose between available strategies in response to risk.
This section defines control, explains how to separate tolerable from intolerable risks that you should control, explains the trade-off between intolerability and practicality, explains why sometimes even tolerable risks are controlled, and explains why different stakeholders can have different levels of toleration and control at the same time.
A control is anything that was intended to or effectively does reduce a risk (see Table 10.1 for official definitions). If ...