I missed this one but better late then never. It's worth reading and should you have some comments, please contribute them to NIST as this is still a draft.NIST announces the release of the second public draft of Special Publication 800-39, Managing Risk from Information Systems: An Organizational Perspective. This publication provides guidelines for managing risk to organizational operations, organizational assets, individuals, other organizations, and the Nation resulting from the operation and use of information systems. Special Publication 800-39 is the flagship document in the series of FISMA-related publications developed by NIST and provides a structured, yet flexible approach for managing that portion of risk resulting from the incorporation of information systems into the mission and business processes of organizations.
SP800-39-spd-sz.pdf (634 KB)
Related posts:
- Performance Measurement for Information Security
- NSA Security Configuration Guides
- New release: Guide to Secure Web Services (NIST 800-95)
- NIST Drafts: Storage Encryption for End User Devices & Guide to SSL VPNs
- NIST Draft for Wireless Network Security for IEEE 802.11a/b/g and Bluetooth
- NIST Drafts: Webservers and Teleworking
- New NIST documents: Phone forensics and others
- Guide to NIST information security documents
- Guidelines on RFID security
Security4all Blog
Twitter
Slideshare
Facebook
Digg
Flickr
0 comments:
Post a Comment