Problem
Compare and contrast informal vs formal risk management in todays digital infrastructures. Explain the consequences of not formalizing risk management. Also, how is information security integrating into system development life cycle? Why is this important to risk management? Finally, explain how risk management helps establish, risk capacity, risk tolerance, and risk appetite. What are the differences between the latter three? What is accomplished by knowing their metrics?
The response should include a reference list. One-inch margins, Using Times New Roman 12 pnt font, double-space and APA style of writing and citations.