Search results

...plication security and availability requirements in response to identified risks, in line with data classification, the organization’s information security ...

::'''1. Risk: Security and business continuity risks are introduced by technical designs incompatible with enterprise standards. ...

...mplemented to enable the use of protection profiles and otherwise mitigate risks to data. If protection profiles are not used, the policies should accompl ...ts. Additionally, the devices may be lost or stolen. Mitigation of those risks typically involves encryption of sensitive data, host-provided access contr ...

::'''(C)''' implementing policies and procedures to cost-effectively reduce risks to an acceptable level; and<br> ::'''(B)''' cost-effectively reduce information security risks to an acceptable level;<br> ...

...curity staff should receive ongoing security training that covers emerging risks to sensitive Company information assets and the latest security trends. ...

DIACAP also uses weighted metrics to describe risks and their mitigation. ...

Identify and mitigate risks relating to suppliers’ ability to continue effective service delivery in a :::a. [[SOX.1.24:|'''SOX.1.24''']] Third-party service contracts address the risks, security controls and procedures for information systems and networks in t ...

::'''(C)''' implementing policies and procedures to cost-effectively reduce risks to an acceptable level; and<br> ::'''(B)''' cost-effectively reduce information security risks to an acceptable level;<br> ...

...ute to the enterprise’s strategic objectives (goals) and related costs and risks. It includes how IT will support IT-enabled investment programs and operati ...

::'''1. Risk: Security and business continuity risks are introduced by technical designs incompatible with enterprise standards. ...

::'''1. Risk: Security and business continuity risks are introduced by technical designs incompatible with enterprise standards. ...

...formation Security Program to manage Information Security-related business risks.<br> ...

...re based on risk assessments, cost-effectively reduce information security risks to an acceptable level, and ensure that information security is addressed t ...lying with organizational policies and procedures designed to reduce these risks ...

:* What single points of failure exist and how significant are those risks? ...

::'''2. Risk: Security and business continuity risks are introduced by technical designs incompatible with enterprise standards. ...

...inancial reporting bypass processes for identifying business requirements, risks, and for designing needed controls.'''<br> ...

...ion assurance (IA)''' is the practice of assuring information and managing risks related to the use, processing, storage, and transmission of information or ...fully considered. Thus, the IA practitioner does not seek to eliminate all risks, were that possible, but to manage them in the most [[cost-effective]] way. ...

...der future flexibility for capacity additions, transition costs, technical risks and the lifetime of the investment for technology upgrades. Assess the comp ...

::'''1. Risk: Security and business continuity risks are introduced by technical designs incompatible with enterprise standards. ...

::'''2. Risk: Security and business continuity risks are introduced by technical designs incompatible with enterprise standards. ...