Compliance: Difference between revisions
| Line 54: | Line 54: | ||
[[Media:FIPS200.pdf | FIPS 200]]<br> | [[Media:FIPS200.pdf | FIPS 200]]<br> | ||
<br> | <br> | ||
==FISMA: Federal Information Security Management Act: [[FISMA]]== | ==FISMA: Federal Information Security Management Act: [[FISMA]]== | ||
<br> | <br> | ||
Revision as of 19:21, 27 July 2012
COBIT 4.0 Domains:
Planning and Organization
Acquisition and Implementation
Delivery and Support
Monitor and Evaluate
ISO 27002 Domains:
Risk Assessment and Treatment
Security Policy
Organizing Information Security
Asset Management
Human Resources Security
Physical and Environmental Security
Communications and Operations Management
Access Control
Information Systems Acquisition, Development and Maintenance
Information Security Incident Management
Business Continuity Management
Compliance
ITIL IT Infrastructure Library:
Service Level Management
Financial Management
Capacity Management
Availability Management
Continuity Management
Security Management
Service Desk Management
Incident Management
Problem Management
Configuration Mangement
Change Management
Release Management
COSO Enterprise Risk Management Framework Domains:
Internal Environment
Objective Setting
Event Identification
Risk Assessment
Risk Response
Control Activities
Information and Communications
Monitoring
NIST: National Institute of Standards and Technology Publications
SP 800-37
SP 800-53
SP 800-53A
SP 800-59
SP 800-60
FIPS: Federal Information Processing Standards
FISMA: Federal Information Security Management Act: FISMA
DOI: Department of Insurance
HIPAA: Health Insurance Portability and Accountability Act
PCI: Payment Card Industry - AKA - VISA CISP
FFIEC Federal Financial Institutions Examination Council
BSA: Bank Secrecy Act and Anti-Money Laundering
