ISSC363 Krum week 2
ISSC363 Krum week 2
Popular in Course
verified elite notetaker
Popular in Department
This 0 page Study Guide was uploaded by kimwood Notetaker on Monday November 9, 2015. The Study Guide belongs to a course at a university taught by a professor in Fall. Since its upload, it has received 17 views.
Reviews for ISSC363 Krum week 2
Report this Material
What is Karma?
Karma is the currency of StudySoup.
You can buy or earn more Karma at anytime and redeem it for class notes, study guides, flashcards, and more!
Date Created: 11/09/15
What is a Security Risk Assessment It is the practice of a company to look at their system and find out what their biggest weaknesses are in the system And then prioritizes them into what is the most critical For it is vitally important to know where and how your system is weakest What elements does it entail Various parts of the assessment are the Hardware and software considerations IDing the assets data and infrastructure And most importantly the risks and vulnerabilities Along with the impacts to the company There can of course be more or less depending on what exactly your superiors are looking for but in general it is important to have these parts in your reports Does it include or exclude Penetration Testing Yes the penetration test is taken into account It is a way of identifying holes in your system defenses Penetrating testing is one of the most important in my basic opinion For if it were me trying to get information from a person this is one of the first ways I would try See what you can get with as little effort as you can What types of Security Risk Assessments exists Identify at least 3 Three types of risk assessments are ID of risks to manage Selection of controls and implementation of test controls These are important and some of the basic risk assessments that are out there There are of course many more that can be run on your system and many of them are much more indepth and more spi c to certain aspects of your system Gibson D 2011 Managing Risk in Information Systems Sudbary MA Jones amp Bartlett
Are you sure you want to buy this material for
You're already Subscribed!
Looks like you've already subscribed to StudySoup, you won't need to purchase another subscription to get this material. To access this material simply click 'View Full Document'