Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: US-CCU Cyber-Security Check List 2007

from [Saqib Ali] Network Security [Permanent Link]
Subject: Re: US-CCU Cyber-Security Check List 2007
Date: Thu, 23 Nov 2006 23:54:06 -0500 
Disclaimer: Although the name and promotional material of this
organization (US-CCU) seems to imply governmental affiliation, it is
actually private contractors drafting what they think the  questions
ought to be. Most such private lists are never widely adopted. (SANS
NewsBites - Volume: VIII, Issue: 34)

And as far as I know this checklist has received NO DHS approval etc....

saqib
http://www.full-disk-encryption.net


On 11/22/06, lists@virtualcso.com <lists@virtualcso.com> wrote: 
This checklist is well written and worth adding to your audit toolkit.
US-CCU considers attack vectors and layers on appropriate controls.

http://www.ussecurityawareness.org/docs/US-CCU%20Cyber-Security%20Check%20Li
st%202007.pdf

"This check list is intended as a comprehensive survey of the steps that
corporations and other organizations should take to reduce their
vulnerability to cyber-attacks".

Kind regards,

Gideon

Gideon T. Rasmussen
CISSP, CISA, CISM, IAM
Charlotte, NC
http://www.virtualcso.com

http://www.ussecurityawareness.org
http://groups.yahoo.com/group/gideons-infosec-list
http://groups.yahoo.com/group/insider-threat
http://groups.yahoo.com/group/security-awareness


--------------------------------------------------------------------
mail2web - Check your email from the web at
http://mail2web.com/ .





--
Saqib Ali, CISSP, ISSAP
http://www.full-disk-encryption.net

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Full-disclosure] CSRF with MS Word, David Kierznowski
Next by Date:  [Full-disclosure] The state of JavaScript Hacking, pdp (architect)
Previous by Thread:  US-CCU Cyber-Security Check List 2007, lists@virtualcso.com
Next by Thread:  Small http server with client certificate validation., skarvin
Indexes:  [Date] [Thread] [Top] [All Lists]