Security Controls Evaluation, Testing, and Assessment Handbook
Syngress Media,U.S. (Verlag)
9780128023242 (ISBN)
- Titel erscheint in neuer Auflage
- Artikel merken
Security Controls Evaluation, Testing, and Assessment Handbook shows you what your security controls are doing and how they are standing up to various inside and outside threats. This handbook provides guidance and techniques for evaluating and testing various computer security controls in IT systems.
Author Leighton Johnson shows you how to take FISMA, NIST Guidance, and DOD actions and provide a detailed, hands-on guide to performing assessment events for information security professionals who work with US federal agencies. As of March 2014, all agencies are following the same guidelines under the NIST-based Risk Management Framework. This handbook uses the DOD Knowledge Service and the NIST Families assessment guides as the basis for needs assessment, requirements, and evaluation efforts for all of the security controls. Each of the controls can and should be evaluated in its own unique way, through testing, examination, and key personnel interviews. Each of these methods is discussed.
Leighton Johnson, the CTO of ISFMT (Information Security Forensics Management Team), a provider of cybersecurity & forensics consulting and certification training, has presented computer security, cyber security and forensics lectures, conference presentations, training events and seminars all across the United States, Asia and Europe. He has over 40 years’ experience in Computer Security, Cyber Security, Software Development and Communications Equipment Operations & Maintenance; Primary focus areas include computer security, information operations & assurance, incident response & forensics investigations, software system development life cycle focused on testing of systems, systems engineering and integration activities, database administration and cyber defense activities.
Introduction to Assessments
Risk and Security
Statutory & Regulatory GRC
Federal RMF Requirements
Risk Management Framework - SP 800-37, rev.1
Roles and Responsibilities
Assessment Process
Assessment Methods
Assessment Techniques for each kind of control
Evidence of Assessment
Reporting
Conclusion
Appendix A: Templates for RMF documents and artifacts commonly required or requested
Appendix B: Templates for RMF Policies and Procedures by Control Family
Appendix C: Assessment & Testing Tools
| Erscheint lt. Verlag | 15.12.2015 |
|---|---|
| Zusatzinfo | 30 illustrations; Illustrations |
| Verlagsort | Rockland, MA |
| Sprache | englisch |
| Maße | 191 x 235 mm |
| Gewicht | 1360 g |
| Themenwelt | Informatik ► Netzwerke ► Sicherheit / Firewall |
| ISBN-13 | 9780128023242 / 9780128023242 |
| Zustand | Neuware |
| Informationen gemäß Produktsicherheitsverordnung (GPSR) | |
| Haben Sie eine Frage zum Produkt? |
aus dem Bereich
