Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Management
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Methodology for a Risk Assessment

from [John Blackley] Network Security [Permanent Link]
Subject: Re: Methodology for a Risk Assessment
Date: 4 Nov 2004 04:13:27 -0000 
In-Reply-To: 
<F39EE4D7115F1443991E5337066BF347058ACA5F@k002madtechxa.dcps.duval.us>

"an enterprise risk assessment" I'm not 100% certain of what you mean by that.

If you mean an assessment of the general controls present in an enterprise - 
and their effectiveness - then I suggest you look to SAS 70 (google it). 

If you're looking to test the information security program in an enterprise 
then you could do worse than basing your assessment on the ISO17799 Code of 
Practice.

However, if you're looking for a general risk assessment methodology for use 
throughout an enterprise then please feel free to contact me and I'll be happy 
to give you some pointers on where to look, at least.

John A Blackley
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Vulnerability Mitigation Management, infosecgod
Next by Date:  Re: Policies for Securing the edge, Jakob Fredriksson
Previous by Thread:  Methodology for a Risk Assessment, Alt, Brandon C.
Next by Thread:  BS7799 via Octave, Marian Gones
Indexes:  [Date] [Thread] [Top] [All Lists]