O'Reilly logo

CRISC Certified in Risk and Information Systems Control All-in-One Exam Guide by Dawn Dunkerley, Bobby E. Rogers

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

CHAPTER 7

Information Systems Control Concepts

In this chapter, you will:

•  Learn the basic concepts of controls

•  Examine different control frameworks

We’ve discussed controls throughout this book so far, but always from a risk identification, assessment, analysis, and response perspective. There’s a lot more to be learned about security controls and how they are designed and implemented. In this chapter, we will begin to change direction a bit and focus on controls from those perspectives. We will review some basics regarding controls, and you will learn about how you select them to perform specific functions in protecting systems and data. We’ll also review a few key control frameworks in detail, including the National Institute of Standards ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required