Risk Management for Cybersecurity: Security Baselines
Microsoft published this whitepaper on the role of “security baselines” in April 2018. It suggests a set of foundational activities through which organisations can advance cyber risk management. The authors advocate for baselines that engage executives and embed flexibility, enabling organisations’ security capabilities and investments to evolve with the rapidly changing threats. They also advocate for baselines that are applicable across sectors and regions.