Welcome

Anti Essays offers essay examples to help students with their essay writing.

Sign Up

Framework Analysis - Nist/Cobit

Open Document

Below is a free excerpt of "Framework Analysis - Nist/Cobit" from Anti Essays, your source for free research papers, essays, and term paper examples.

SUBDOMAIN 427.3 - SECURITY POLICY & STANDARDS
By Daved Karl

A – Key Element Discussion
RMF To-Do List
RMF Tasks Discuss how you determined the status of each task. Consider the following: If done, is it complete? Where is it located? If not done, what are the recommendations for completing? Where should the results be saved? RMF Step 1: Categorize Information Systems 1.1 Not done As highlighted in the risk assessment, there Security is no security plan done (p.18). Add the Categorization security categorization information to the Using either FIPS security plan. 199 or CNSS 1253, categorize The security categorization that was the information completed in the risk assessment can be system. The included in the security plan. The full completed categorization can be found on pp. 14-16. categorization The categorization done in the risk analysis is should be based on FIPS 199. included in the security plan. 1.2 Not Done A complete organizational assessment was Information not performed. A detailed document should System include an overview/listing of all hardware Description and software, versions, release notes, etc. A Is a description of company charter, vision and or mission the information statement with business flow chart and system included process documentation should be in the security documented. Additionally a access control plan? list should be completed outlining and identifying all data access points. 1.3 Not Done A list of all assets, a list of associated users Information using the asset, user security of the asset, System location of the asset and equipment Registration identification/serial number should be Identify offices performed. that the information system should be registered with. These can be organizational or management offices. Status (done/not done) External documents needed for task

FIPS 199 for nonnational security systems, CNSS 1253 for national security systems

NIST 800-37 Page 21

NIST 800-37 Page 22

SUBDOMAIN 427.3...

Show More


Citations

MLA Citation

"Framework Analysis - Nist/Cobit". Anti Essays. 16 Dec. 2018

<http://parimatchstavki7.com/free-essays/Framework-Analysis-Nist-Cobit-634971.html>

APA Citation

Framework Analysis - Nist/Cobit. Anti Essays. Retrieved December 16, 2018, from the World Wide Web: http://parimatchstavki7.com/free-essays/Framework-Analysis-Nist-Cobit-634971.html