Risk Assessment and Analysis

MUST READ Week 20: Beginning the dreaded risk assessment TIP - In this week's column, Shelley Bard offers tips on how to perform a risk assessment. Security Assessment: Case Studies for Implementing the NSA IAM BOOK CHAPTER - This excerpt is from Chapter 1, Laying the Foundation for Your Assessment in Security Assessment: Case Studies for Implementing the NSA IAM.

EXPERT TECHNICAL ADVICE: 1 - 3 of 53

RISK ASSESSMENT AND ANALYSIS EXPERTS
			Mike Rothman President and Principal Analyst ASK A QUESTION

	How can gap analysis be applied to the security system development life cycle? 07 Nov 2008 EXPERT ANSWER - When developing software securely, what role does gap analysis play? In this security management expert response, learn how to implement gap analysis into software development, and how it can help stop data leaks at your ...

	What role does information security play in enterprise fraud-prevention activities? 06 Oct 2008 EXPERT ANSWER - When an enterprise is worried about fraud, where does the information security team step in? Security management expert Mike Rothman explains the role information security plays in enterprise fraud-prevention activities.

	Are independent researchers out for fame? 07 Oct 2008 EXPERT ANSWER - According to a recent X-Force report, it seems some independent researchers may be more interested in fame than exposing security risks. But how accurate is this assessment? Security management expert Mike Rothman gives his ...

	VIEW ALL EXPERT TECHNICAL ADVICE ON RISK ASSESSMENT AND ANALYSIS

NEWS: 1 - 3 of 59

	Death of a risk assessor SearchSecurity.com | 11.19.2008 OPINION - Old-world risk assessment doesn't cut it in the fast-changing world of technology

	Security spending driven by mergers, Web 2.0 and compliance SearchSecurity.com | 28 Oct 2008 ARTICLE - PricewaterhouseCoopers' annual Global State of Information Security Survey found mergers, Web 2.0 and other business initiatives driving spending nearly as much as compliance.

	IT security pros focus on internal threats during tough economy SearchSecurity.com | 21 Oct 2008 INTERVIEW - Layoffs, mergers and acquisitions are forcing some IT security pros to look closely at the internal threats posed by disgruntled employees and mishandled data.

	VIEW ALL NEWS ON RISK ASSESSMENT AND ANALYSIS

REFERENCE & LEARNING: 1 - 3 of 17

	The New School of Information Security SearchSecurity.com and Addison-Wesley | 29 May 2008 BOOK CHAPTER: WINDOWS VISTA SECRETS - With this chapter excerpt from "The New School of Information Security," learn why the use and abuse of security language calls for a fresh and innovative way of thinking.

	Risk management audit SearchSecurity.com | 30 Aug 2006 LEARNING GUIDE - This article explores the audit function in the insider threat management process.

	Risk management: Implementation of baseline controls SearchSecurity.com | 30 Aug 2006 LEARNING GUIDE - This fourth article in the Insider Threat Management Guide examines the implementation of baseline controls.

	VIEW ALL REFERENCE & LEARNING ON RISK ASSESSMENT AND ANALYSIS

MAGAZINE CONTENT (free subscription required): 1 - 3 of 20

	Bruce Schenier, Marcus Ranum debate risk management Information Security Magazine | 01 Oct 2008 COLUMNS - Experts Bruce Schneier and Marcus Ranum debate whether risk management is an appropriate strategic direction for information security professionals to follow.

	Interview: Financial Services CISO David Pollino Information Security Magazine | 01 Jun 2008 COLUMNS - CISO Uses Predictive Analystics to Bolster Risk Management Program

	GRC Tools Help Manage Regulations Information Security Magazine | 01 Jun 2008 FEATURES - GOVERNANCE, RISK AND COMPLIANCE We look at three GRC products and the distinct ways these tools can help organizations navigate the complicated regulatory game.

	VIEW ALL MAGAZINE CONTENT ON RISK ASSESSMENT AND ANALYSIS

WEBCASTS: 1 - 2 of 2

Bridging the gap between IT security & IT operations - Vendor Webcast VIEW WEBCAST PREMIERED:   25 APR 2006, 14:00 EDT (18:00, GMT) SUMMARY:   Join a distinguished panel of experts including Chris Christiansen, IDC's Vice President for Security Products and Services group, as they discuss ways to bridge the gap between IT Security & IT Operations by automating the IT security compliance lifecycle.

	CISSP Essentials: Mastering the Common Body of Knowledge -- Class 1, Security management practices - Expert Webcast VIEW WEBCAST PREMIERED:   14 OCT 2004, 09:00 EDT (13:00, GMT) SUMMARY:   While viruses, worms and hacking grab all the news headlines, sound security management practices are the foundation of any organization's security success.

	VIEW ALL WEBCASTS ON RISK ASSESSMENT AND ANALYSIS

DEFINITIONS: 1 - 1 of 1

	risk analysis 18 Apr 2006 WORD - Risk analysis is the process of defining and analyzing the dangers to individuals, businesses and government agencies posed by potential natural and human-caused adverse events. In IT, a risk analysis report can be used to ...

	VIEW ALL DEFINITIONS ON RISK ASSESSMENT AND ANALYSIS

	SEE ALSO - Topics Related to Risk Assessment and Analysis:  Risk Management Metrics and Measuring Risk