Guide for Conducting Risk Assessments: NIST Special Publication 800-30, Revision 1 Contributor(s): U. S. Department of Commerce (Author) |
|
![]() |
ISBN: 1497468159 ISBN-13: 9781497468153 Publisher: Createspace Independent Publishing Platform OUR PRICE: $11.16 Product Type: Paperback Published: September 2012 |
Additional Information |
BISAC Categories: - Computers | Information Technology |
Physical Information: 0.21" H x 8.5" W x 11.02" (0.57 lbs) 102 pages |
Descriptions, Reviews, Etc. |
Publisher Description: This document provides guidance for conducting risk assessments of federal informational systems and organizations, amplifying the guidance in Special Publication 800-39. This document provides guidance for carrying out each of the steps in the risk assessment process (i.e., preparing for the assessment, conducting the assessment, communicating the results of the assessment, and maintaining the assessment) and how risk assessments and other organizational risk management processes complement and inform each other. It also provides guidance to organizations on identifying specific risk factors to monitor on an ongoing basis, so that organizations can determine whether risks have increased to unacceptable levels (i.e., exceeding organizational risk tolerance) and different courses of action should be taken. |