CHAPTER 11
Assessing Enterprise Cybersecurity
This chapter discusses several things related to assessing an enterprise cybersecurity program. First, it discusses the audit process and how auditing is used to evaluate enterprise cybersecurity. Second, it discusses how audits can and should be used to drive the cybersecurity control design process. Third, it describes how enterprise cybersecurity can be systematically evaluated using four different levels of assessment detail. Finally, it describes deficiency tracking, which is an integral component of any formal auditing or assessment process.
Assessments and audits can be conducted by internal ...
Get Enterprise Cybersecurity: How to Build a Successful Cyberdefense Program Against Advanced Threats now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.