Conducting an electronic information risk assessment for Gramm-Leach-Bliley Act compliance.

by Kevin Bong
Sept. 1, 2017 0 comments SANS Institute Pen Testing & Audits auditing & assessment

The process involves listing each technology and vendor service and categorizing these systems based on the data they process or store.

https://www.sans.org/reading-room/whitepapers/auditing/conducting-electronic-information-risk-ass...