The National Institute of Standards and Technology (NIST) has published a 387-page Guide for Assessing the Security Controls in Federal Information Systems, which you can freely download as a PDF document. Technically this document is a draft (the third draft), but even so, it contains good information on the fundamentals of security controls and details on the process you undergo to develop and implement controls. This is a useful read for anyone in the IT Security business.
No comments:
Post a Comment