Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Management
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

risk assessment - Likelihood determination

from [laptop32901] Network Security [Permanent Link]
Subject: risk assessment - Likelihood determination
Date: 15 Dec 2005 17:54:01 -0000 
hello all,

Do any of you have any links (URLs) you can suggest for risk assessment 
methodologies or frameworks that provide specific guidance and examples on how 
to estimate the "likelihood of occurrence" of risks?

I am familiar with NIST SP 800-30, and I am aware of 800-30's definitions of 
high, medium, and low.  I am looking for more detailed guidance and examples, 
if any exist.

I am also aware of the MS Security Risk Mgmt guide, Chapter 4, which says a 
high probability risk is one expected to occur within one year.  Has anyone 
seen similar or different definitions from other sources?
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Newest edition of ISO 17799, Security
Next by Date:  ICT general risks, security
Previous by Thread:  Newest edition of ISO 17799, MJ
Next by Thread:  Re: risk assessment - Likelihood determination, Ryan Chow
Indexes:  [Date] [Thread] [Top] [All Lists]