Profiles
We need a way to evaluate the overall risk posture of an organization. To do this successfully, we must understand the current state of the cybersecurity program and determine where we intend the program to go. This can sometimes be simple, especially when you currently work for the organization. However, if you are a newly hired employee, you will need to perform an assessment or have one performed for you first.
The risk assessment provides several benefits. First, it helps you build relationships with your new coworkers. Building relationships should be the first objective when entering a new organization. This allows you to get acquainted with the executive leadership team, the IT team, and the incident response team. This is also the time when you have conversations to better understand the IT and security history of the company.
Second, performing the assessment will give you a background of the currently implemented controls. These conversations will provide insight...
