Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Management
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Risk Assessment Standards

from [trevor . cardwell] Network Security [Permanent Link]
Subject: Re: Risk Assessment Standards
Date: Tue, 9 Nov 2004 07:01:53 +1100 

Brandon,

Take a look at www.citicus.com - this is used in conjunction with the ISF
Standard of Good Practice for Information Security.

Regards
Trevor Cardwell
Information Security Manager
AXA Australia



                                                                                
                                                       
                      "Alt, Brandon C."                                         
                                                       
                      <altb@educationcent      To: 
<security-management@securityfocus.com>                                         
    
                      ral.org>                 cc:                              
                                                       
                                               Subject:  Risk Assessment 
Standards                                                     
                      09/11/2004 12:14 AM                                       
                                                       
                                                                                
                                                       
                                                                                
                                                       




I'm looking to find what standards are available for performing a security
risk assessment. What's out there? I know of Cobra and Octave, but have
never used them. Does anyone have any experience with these two? What other
standards do other follow?

Thanks.

Brandon Alt
Information Security Manager
Technology Division
Duval County Public Schools




_____________________________________________________________________
This e-mail has been scanned for viruses by MCI's Internet Managed
Scanning Services - powered by MessageLabs. For further information
visit http://www.mci.com









*********************************************************************************
Important Note
This email (including any attachments) contains information which is 
confidential and may be subject to legal privilege.  If you are not 
the intended recipient you must not use, distribute or copy this 
email.  If you have received this email in error please notify the 
sender immediately and delete this email. Any views expressed in this 
email are not necessarily the views of AXA.   Thank you.
*********************************************************************************
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Risk Assessment Standards, wyatt
Next by Date:  ITIL for Security Management, Gareth Bromley
Previous by Thread:  Re: Risk Assessment Standards, wyatt
Next by Thread:  ITIL for Security Management, Gareth Bromley
Indexes:  [Date] [Thread] [Top] [All Lists]