@ risk management
US Department of Defense takes a run at IT risk management. In the history of the world there has never been a military power as far reaching and complete as the US armed services. Is it because they spend over half a trillion dollars on their military which is more than the next 10 nations combined? hmm.. perhaps.
Or maybe is having over 7ooo nukes? I am no military expert, so i cannot say for sure. But I DO know a little something/something about IT Risk Management. And I think the DoD is really making an honest attempt at risk management… which maybe why its taking them 3+ years to release “DIARMF” (2011 – 2014). I am proud of them and I am glad they are really trying to take security seriously. I think that as large, government organizations go they are kind of driving the market on how it can be done.
I would NOT say they are the most secure, and I would not say they are perfect by any stretch of the imagination but I would say they have made most improvements in the last 10 years than any large government organization.
As the one of the biggest military organizations on the block with the most toy, the most controversy, the most coverage in the media (cira 2000-2014) I would say they are doing pretty good.