Risk management is a fundamental principle of cybersecurity as the alternative would be the pursuit of total security which is unaffordable and unachievable for an organization as large and complex as the federal government. This week former Department of Homeland Security Undersecretary Suzanne Spaulding joins the podcast to discuss the challenges government faces in its quest for cybersecurity risk management, and how government officials must manage making security investments when the benefits and outcomes are uncertain. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e25