Академический Документы
Профессиональный Документы
Культура Документы
RISK ASSESSMENT
INTRODUCTION
Information security risk assessment is an on-going
process of discovering, correcting and preventing
security problems.
The risk assessment is an integral part of a risk
management process designed to provide appropriate
levels of security for information systems.
Information security risk assessments are part of sound
security practices and are required by the Common
wealth Enterprise Information Security Policy.
The risk assessment will help each agency determine the
acceptable level of risk and the resulting security
requirements for each system
System
Documentation Phase
Identify threats;
Identify vulnerabilities;
Describe risks;
DEFINITIONS