Help:Contents: Difference between revisions

From HORSE - Holistic Operational Readiness Security Evaluation.
Jump to navigation Jump to search
No edit summary
Line 34: Line 34:
'''A brief explanation of industry or legislative control requirments can be found through the links below.'''
'''A brief explanation of industry or legislative control requirments can be found through the links below.'''


[http://www.aicpa.org/info/sarbanes_oxley_summary.htm '''Sarbanes-Oxley''']<br>
[http://cpcaf.aicpa.org/Resources/Sarbanes+Oxley/Summary+of+the+Provisions+of+the+Sarbanes-Oxley+Act+of+2002.htm '''Sarbanes-Oxley''']<br>
[http://aspe.hhs.gov/admnsimp/pl104191.htm '''HIPAA''']<br>
[http://aspe.hhs.gov/admnsimp/pl104191.htm '''HIPAA''']<br>
[http://www.ftc.gov/privacy/privacyinitiatives/glbact.html '''GLBA''']<br>
[http://www.ftc.gov/privacy/privacyinitiatives/glbact.html '''GLBA''']<br>
Line 41: Line 41:
[http://csrc.nist.gov/publications/nistpubs/800-66/SP800-66.pdf '''NIST SP 800-66''']<br>
[http://csrc.nist.gov/publications/nistpubs/800-66/SP800-66.pdf '''NIST SP 800-66''']<br>
[http://iase.disa.mil/ditscap/index.html '''Ditscap''']<br>
[http://iase.disa.mil/ditscap/index.html '''Ditscap''']<br>
[http://doi.ppr.ky.gov/kentucky '''DOI''']<br>
'''Control Exception:''' If a control condition exists that is exempt from testing, documentation should be available.<br>
'''Control Exception:''' If a control condition exists that is exempt from testing, documentation should be available.<br>
'''User Defined:''' Any control that is truly unique to the enterprise should be noted accordingly.<br>
'''User Defined:''' Any control that is truly unique to the enterprise should be noted accordingly.<br>

Revision as of 17:33, 6 October 2006

File:Greenlock.jpg The status of this control objective is acceptable.

File:Yellowlock.jpg The status of this control objective requires additional attention.

File:Bluelock.jpg The status of this control objective has been remediated.

File:Redlock.jpg The status of this control objective is not acceptable and requires remediation.


The risk potential condition is low. Use this image to provide a visual indication.

The risk potential condition is medium. Use this image to provide a visual indication.

The risk potential condition is high. Use this image to provide a visual indication.


Use this icon to visually illustrate what would be considered a key control.


Consult the User's Guide for information on using the wiki software.

Getting started



A brief explanation of industry or legislative control requirments can be found through the links below.

Sarbanes-Oxley
HIPAA
GLBA
PCI
FISMA
NIST SP 800-66
Ditscap
DOI
Control Exception: If a control condition exists that is exempt from testing, documentation should be available.
User Defined: Any control that is truly unique to the enterprise should be noted accordingly.

--Mdpeters 10:46, 10 May 2006 (EDT)

Retrieved from "http://horseproject.wiki/index.php?title=Help:Contents&oldid=2495"