Gunnar Peterson of the Arctec Group on the difficulty of valuating assets in the digital world:
"Risk management requires that you know your assets .....Unfortunately, in the digital world these turn out to be devilishly hard to identify and value."
"In a world that quite literally presents us with too much information, we need screens to sift out what is worth paying attention to. You can run your vulnerability assessment tool of choice on your system, and come back with hundreds or thousands of vulnerabilities, but which ones should you pay attention to and act on?"
A simple maxim - know your assets. However difficult, it is the starting point for aligning your information security budget with your business.