Skip to Main Content
Information Security Policy Development for Compliance
book

Information Security Policy Development for Compliance

by Barry L. Williams
April 2016
Intermediate to advanced content levelIntermediate to advanced
152 pages
4h 9m
English
Auerbach Publications
Content preview from Information Security Policy Development for Compliance
77
InformatIon SecurIty PolIcy DeveloPment for comPlIance
b. Provides refresher training [Assignment: organization-dened
frequency].
IR-3 INCIDENT RESPONSE TESTING AND EXERCISES
Control: e organization tests and/or exercises the incident response
capability for the information system [Assignment: organization-
dened frequency] using [Assignment: organization-dened tests and/or
exercises] to determine the incident response eectiveness and docu-
ments the results.
IR-4 INCIDENT HANDLING
Control: e organization:
a. Implements an incident handling capability for security inci-
dents that includes preparation, detection and analysis, con-
tainment, eradication, and recovery;
b. Coo
rdinates incident handling activities with contingency ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Writing Information Security Policies

Writing Information Security Policies

Scott Barman

Publisher Resources

ISBN: 9781466580589