Enterprise Risk Management: A Comprehensive Introduction to Managing Cyber Security and Information Security Risks by Bettwy Gwen
Author:Bettwy, Gwen
Language: eng
Format: epub
Publisher: Tactical Security Inc.
Published: 2024-06-02T00:00:00+00:00
Identify Vulnerabilities and Predisposing Conditions
Vulnerabilities and predisposing conditions can influence the extent of the likelihood that a threat event can result in negative impacts. The primary purpose of these assessments is for the team to get a feeling for the extent to which the organization (Level 1), mission or business process (Level 2), and information systems (Level 3) may be vulnerable to the relevant threat sources and events.
Predisposing conditions that exist within organizations, like existing business processes, information systems, and the specific operational environment, can contribute to the likelihood of threat events, underpinned by threat sources, having some form of negative impact on the organization, its mission, and systems. Matching the predisposing conditions to threat events will reduce the extent of potential risks to be assessed.
Sub-activities include:
â Identify vulnerability and predisposing condition inputs.
â Identify vulnerabilities using organization-defined information sources.
â Assess the severity of identified vulnerabilities.
â Identify predisposing conditions.
â Assess the pervasiveness of predisposing conditions.
The NIST SP 800-30 again provides a handy citation in this regard:
â some examples of inputs into the task of identifying vulnerability and predisposing conditions.
â an assessment scale for assessing the severity of identified vulnerabilities.
â a taxonomy for identification and characterization of predisposing conditions.
â an assessment scale for assessing the pervasiveness of predisposing conditions.
Download
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.
What's Done in Darkness by Kayla Perrin(26333)
Shot Through the Heart: DI Grace Fisher 2 by Isabelle Grey(18847)
Shot Through the Heart by Mercy Celeste(18729)
The Fifty Shades Trilogy & Grey by E L James(18690)
Python GUI Applications using PyQt5 : The hands-on guide to build apps with Python by Verdugo Leire(14031)
The Subtle Art of Not Giving a F*ck by Mark Manson(13996)
Wolf & Parchment: New Theory Spice & Wolf, Vol. 10 by Isuna Hasekura and Jyuu Ayakura(13974)
The 3rd Cycle of the Betrayed Series Collection: Extremely Controversial Historical Thrillers (Betrayed Series Boxed set) by McCray Carolyn(13908)
Wolf & Parchment: New Theory Spice & Wolf, Vol. 03 by Isuna Hasekura and Jyuu Ayakura & Jyuu Ayakura(13849)
Peren F. Statistics for Business and Economics...Essential Formulas 3ed 2025 by Unknown(13732)
Wolf & Parchment: New Theory Spice & Wolf, Vol. 01 by Isuna Hasekura and Jyuu Ayakura & Jyuu Ayakura(13443)
Stepbrother Stories 2 - 21 Taboo Story Collection (Brother Sister Stepbrother Stepsister Taboo Pseudo Incest Family Virgin Creampie Pregnant Forced Pregnancy Breeding) by Roxi Harding(12962)
Scorched Earth by Nick Kyme(12559)
Drei Generationen auf dem Jakobsweg by Stein Pia(10785)
Suna by Ziefle Pia(10718)
Scythe by Neal Shusterman(10091)
International Relations from the Global South; Worlds of Difference; First Edition by Arlene B. Tickner & Karen Smith(9332)
Successful Proposal Strategies for Small Businesses: Using Knowledge Management ot Win Govenment, Private Sector, and International Contracts 3rd Edition by Robert Frey(9161)
This is Going to Hurt by Adam Kay(8813)
