Fighting Computer Crime: A New Framework for Protecting Information
Risk assessment demands due diligence, which makes business sense and derives organization mission. Due care care is also about applying the specific control that counts. In information security, due diligence means a complete and comprehensive effort is made to avoid a security breach which could cause detrimental effects and identify various threats that may be exploited for a possible security breach.
Donn Parker defines due care as a “use of resonable safeguards based on the practices of similiar organizations”
Fred Cohen defines “due diligence is met by virtue of compliance review.”
Organizations must: (i) periodically assess the security controls in organizational information systems to determine if the controls are effective in their application; (ii) develop and implement plans of action designed to correct deficiencies and reduce or eliminate vulnerabilities in organizational information systems; (iii) authorize the operation of organizational information systems and any associated information system connections; and (iv) monitor information system security controls on an ongoing basis to ensure the continued effectiveness of the controls.
(FIPS 200, Section 3, Minimum Security Requirements)
September 22nd, 2009 3:47 am
Donn Parker defines due care as a “use of resonable safeguards based on the practices of similiar organizations”
Fred Cohen defines “due diligence is met by virtue of compliance review.”
December 29th, 2009 7:09 am
This is a cool screen idea ! It is very interesting indeed.Thank you for your info.i love to read all info.
Thanks
Wilson mark
______________________________________________
December 29th, 2009 7:10 am
I want to express my admiration of your writing skill and ability to make reader to read the while thing to the end
regards
Wilson mark
______________________________________________
October 17th, 2011 1:44 am
smoker…
When I first got into Internet Advertising the most important battle I had was writing sales copy that converted guests into customers. I was lucky if I had…
October 19th, 2011 4:23 pm
zum…
here are some links to web pages that we link to because we think they may be worth visiting…
May 30th, 2013 6:44 am
[…] Due Diligence, and Security Assessments (deurainfosec.com) […]