Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Mitigation: Effective when all else fails Mitigation: Guarantees company loss
Termination: Relatively cheap and safe Termination: Rarely appropriate, requires company loss
STANDARD APPROACHES TO
RISK MANAGEMENT
U.S CERTs Operationally Critical Threat Assessment Vulnerability
Evaluation (OCTAVE) Methods (Original, OCTAVE-S, OCTAVE-Allegro)
ISO 27005 Standard for InfoSec Risk Management
NIST Risk Management Model
Microsoft Risk Management Approach
Jack A. Jones Factor Analysis of Information Risk (FAIR)
Delphi Technique
RISK MANAGEMENT
SOFTWARE
https://www.youtube.com/watch?v=lUZy7je-nMY
SOURCES
M. Whitman, H. Mattford. ,Management of information security,
Fourth Edition, Stamford, CT: Cengage Learning, 2014, p. 279-313.
www.youtube.com
www.bing.com/images
www.duckduckgo.com