HORSE - Holistic Operational Readiness Security Evaluation.:Community Portal: Difference between revisions
NoticeBored (talk | contribs) m (Resequenced ISO 27001 domains to match the order in ISO 27001/17799) |
No edit summary |
||
| Line 9: | Line 9: | ||
'''ISO 27001 Domains:''' | '''ISO 27001 Domains:''' | ||
[[Risk Assessment and Treatment:|''' | [[Risk Assessment and Treatment:|'''1. Risk Assessment and Treatment''']]<br> | ||
[[Security Policy:|''' | [[Security Policy:|'''2. Security Policy''']]<br> | ||
[[Organizing Information Security:|''' | [[Organizing Information Security:|'''3. Organizing Information Security''']]<br> | ||
[[Asset Management:|''' | [[Asset Management:|'''4. Asset Management''']]<br> | ||
[[Human Resources Security:|''' | [[Human Resources Security:|'''5. Human Resources Security''']]<br> | ||
[[Physical and Environmental Security:|''' | [[Physical and Environmental Security:|'''6. Physical and Environmental Security''']]<br> | ||
[[Communications and Operations Management:|''' | [[Communications and Operations Management:|'''7. Communications and Operations Management''']]<br> | ||
[[Access Control:|''' | [[Access Control:|'''8. Access Control''']]<br> | ||
[[Information Systems Acquisition, Development and Maintenance:|''' | [[Information Systems Acquisition, Development and Maintenance:|'''9. Information Systems Acquisition, Development and Maintenance''']]<br> | ||
[[Information Security Incident Management:|''' | [[Information Security Incident Management:|'''10. Information Security Incident Management''']]<br> | ||
[[Business Continuity Management:|''' | [[Business Continuity Management:|'''11. Business Continuity Management''']]<br> | ||
[[Compliance:|''' | [[Compliance:|'''12. Compliance''']]<br> | ||
<br> | <br> | ||
Revision as of 01:26, 8 February 2007
COBIT Domains:
Planning and Organization
Acquisition and Implementation
Delivery and Support
Monitor and Evaluate
ISO 27001 Domains:
1. Risk Assessment and Treatment
2. Security Policy
3. Organizing Information Security
4. Asset Management
5. Human Resources Security
6. Physical and Environmental Security
7. Communications and Operations Management
8. Access Control
9. Information Systems Acquisition, Development and Maintenance
10. Information Security Incident Management
11. Business Continuity Management
12. Compliance
COSO Domains:
Monitoring
Control Activities
Information and Communications
Risk Assessment
Control Environment
DOI:
PCI:
Payment Card Industry - AKA - VISA CISP
--Mdpeters 15:12, 28 February 2006 (EDT)
COBIT and COSO Framework Process Overview
--Mdpeters 15:12, 28 February 2006 (EDT)