• Search
• Free Magazines
• Newest Links
• Categories
• Register
• Login

A Certification and Accreditation Plan for Information Systems Security Programs

Added by Papergrl

Description: In order to ensure the confidentiality, integrity and availability of corporate information systems, each organization must implement a comprehensive Information Systems Security Program (ISSP). Determining the effectiveness of the ISSP requires evaluating each module individually, as well as its relationship to other components. Unilateral analysis, while often necessary due to time and resource constraints, results in a fragmented snapshot of the defenses of the enterprise.