Risk management framework : a lab-based approach to securing information systems /

• Main Author: Broad, James.
• Format: eBook
• Language: English
• Published: Amsterdam : Syngress, an imprint of Elsevier, 2013.
• Subjects: Computer security > Government policy > United States.; Information technology > Security measures > United States.; Electronic government information > Security measures > United States.; Risk management > Government policy > United States.; Information technology > United States > Management.; COMPUTERS > Internet > Security.; COMPUTERS > Networking > Security.; COMPUTERS > Security > General.; Computer security > Government policy.; Information technology > Management.; Information technology > Security measures.; Risk management > Government policy.; United States.; Electronic books.
• Online Access: View fulltext via EzAccess

Follows a fictitious organization through the risk management framework process, allowing the reader to follow the development of proper compliance measures such as FISMA and OMB requirements. Can also be tailored to meet other compliance requirements such as Payment Card Industry (PCI) or Sarbanes...

Table of Contents:

• Chapter 1. Introduction
• chapter 2. Laws, regulations, and guidance
• chapter 3. Integrated organization-wide risk management
• chapter 4. The Joint Task Force transformation initiative
• chapter 5. System development life cycle (SDLC)
• chapter 6. Transitioning from the C & A process to RMF
• chapter 7. Key positions and roles
• chapter 8. Lab organization
• chapter 9. RMF phase 1 : categorize the information system
• chapter 10. RMF phase 2 : selecting security controls
• chapter 11. RMF Phase 3 : implementing security controls
• chapter 12. RMF phase 4 : assess security controls
• chapter 13. RMF phase 5 : authorizing the information system
• chapter 14. RMF phase 6 : monitoring security controls
• chapter 15. The expansion of the RMF.