
	Home > Risk management: Data organization and impact analysis

Learning Guide:

LICENSING & REPRINTS

Risk management: Data organization and impact analysis

30 Aug 2006 | SearchSecurity.com

Digg This!

StumbleUpon Toolbar

StumbleUpon

Del.icio.us

Start the process of implementing insider threat controls in your organization by classifying critical information by confidentiality, integrity and availability with associated impact ratings. NIST SP 800-60 provides sample information categories and impact definitions.

Data Type	Confidentiality	Integrity	Availability
Trade Secrets	High	High	Medium
Human Resources	High	Medium	Low
Financial	High	High	Medium

Now that your data has been defined and classified by CIA rating, identify system boundaries. Boundaries should include systems, data flow, networks, people and hard copy printouts.

INSIDER THREAT MANAGEMENT GUIDE

Introduction: Insider threat management guide

Data organization and impact analysis

Baseline management and control

Implementation of baseline control

Risk management audit

Risk management references

Digg This!

StumbleUpon Toolbar

StumbleUpon

Del.icio.us

RELATED CONTENT

	Risk Assessment and Analysis
	Data risks take shine off Google Chrome
	Bruce Schenier, Marcus Ranum debate risk management
	PCI is about eliminating data, not securing it, former QSA says.
	What role does information security play in enterprise fraud-prevention activities?
	Security visualization helps make log files work
	Are independent researchers out for fame?
	Unified communications trigger data leakage dangers, survey finds
	CIO role could shift toward data quality, says IBM group
	Security data lapses hamper researchers
	Panel: IT governance, risk and compliance program helps reduce expenses

Insider Threats

Societe Generale bolsters internal controls, discovers second insider

Information security book excerpts and reviews

I am concerned that a former employee will utilize corporate information in a malicious way.

Security pros focused on internal threat, training

Reasearch on Coding Backdoors Presents Ugly Picture

Deloitte survey finds overconfidence, lack of planning on security

Data loss prevention from the inside out

Insider dangers

Survey finds access control problems at many firms

Societe Generale: A cautionary tale of insider threats

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

risk analysis (SearchSecurity.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

Search Additional Security Research and Solutions
Find Security Channel Research for Resellers and Partners

TechTarget Security Media

Information Security

View this month\\'s issue and subscribe today.

Information Security Decisions

Apply online for free conference admission.

SearchSecurity.com

SEARCH :

Site Index

Powered by:

About Us | Contact Us | For Advertisers | For Business Partners | Site Index | RSS

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.


TechTarget Corporate Web Site \| Media Kits \| Reprints \| Site Map All Rights Reserved, Copyright 2003 - 2008, TechTarget \| Read our Privacy Policy