Vulnerabilities represent weaknesses in technology, controls, processes, capabilities, and human activities that can be exploited by a threat actor and lead to a breach. Owing to limitations in resources, the need to conduct business, and the human element, most entities have dozens of vulnerabilities to document and evaluate. The key to a comprehensive and successful risk analysis lies in analyzing the environment thoroughly enough to collect a comprehensive list of vulnerabilities from across the organization. Several methods can be ...
© Eric C. Thompson 2017
Eric C. Thompson, Building a HIPAA-Compliant Cybersecurity Program, https://doi.org/10.1007/978-1-4842-3060-2_6
6. Weaknesses Waiting to Be Exploited
Eric C. Thompson1
(1)Lisle, Illinois, USA
Get Building a HIPAA-Compliant Cybersecurity Program: Using NIST 800-30 and CSF to Secure Protected Health Information now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
