Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Is there any way to measure IT Security??

from [Craig Wright] Network Security [Permanent Link]
Subject: RE: Is there any way to measure IT Security??
Date: Fri, 29 Jul 2005 09:17:16 +1000 
17799 - part2
SANS have a few measures
The NSA and NIST methodologies are good
ITOL
COSO
COBIT

Lots and the list goes on....

Craig 

-----Original Message-----
From: Larry Marin (Irony Account) [mailto:irony@trini.org] 
Sent: 29 July 2005 2:30
To: Toto A Atmojo
Cc: pen-test@securityfocus.com; security-management@securityfocus.com;
secpapers@securityfocus.com; focus-linux@securityfocus.com;
libnet@securityfocus.com; firewalls@securityfocus.com;
security-basics@securityfocus.com
Subject: Re: Is there any way to measure IT Security??

You should check out NSA IAM/IEM Methodology...it works well for me.
http://www.iatrp.com/iam.cfm


Toto A Atmojo wrote:


Dear all,

Currently I'm looking for a tool, or a technique to measure IT

security?


The baseline for security is CIA (Confidentiality, Integrity and 
Availability), that is every organization which want to called secure 
must be guarantee that their system comply this matter.

But the problem is, we need a tool/technique to measure how secure are



we. Therefore, wee need a tool/technique to measure how close that our



system status now to CIA.

Please share your experience about this matter.

If there any link about this issue, I really appreciate if you share 
to us (You may contact me privately) .

Best Regs,

Toto
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: bluetooth devices list ?, Jerome Athias
Next by Date:  RE: (semi-OT): Correct definition of the DES OFB?, Adrian Floarea
Previous by Thread:  RE: Is there any way to measure IT Security??, Jose Varghese
Next by Thread:  Hardening Solaris 10, James McEachern
Indexes:  [Date] [Thread] [Top] [All Lists]