Facilitating the Qualitative Security Assessment: Overview of the Process of Defining and Delivering

by Mike Kleckner
Sept. 1, 2017 0 comments SANS Institute Pen Testing & Audits security basics

The Security Assessment represents a process that is used to help ensure that the appropriate security measures are identified and applied to meet management’s expectations for a secure and trusted computing environment. There are two aspects of this process that contribute to its success. The first is the need to provide management with a clear understanding of the security issues and the related threats that impact the processes they are responsible for. The second aspect involves the identification and delivery of solution options and their associated costs, offered by appropriate, qualified solution providers.

https://www.sans.org/reading-room/whitepapers/basics/facilitating-qualitative-security-assessment...