Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
3 Cards in this Set
- Front
- Back
|
Security Management encompasses 1. Administrative 2. Technical 3. Physical Controls |
Security Controls are manifested through a foundation of Policies, Procedures, Standards, Baselines and Guidelines. |
|
|
ISM manages risk such tools include 1. Risk Assessment 2. Risk Analysis 3. Data Classification 4. Security awareness |
Information assets are classified and through risk assessment, the threats and vulnerability associated with assets are categorised. Appropriate safeguard to mitigate risk can be identified and prioritised. |
|
|
Security Review, Risk analysis, cost-benefit analysis, selection and evaluation of safeguard, management decision, safeguard identification and implementation and ongoing review |
Risk management principles: 1. Risk avoidance 2. Risk transfer 3. Risk mitigation 4. Risk acceptance |
