Glossary of Key Terms
A
Accept | One of the techniques used to manage risk. When the cost to reduce the risk is greater than the potential loss, the risk is accepted. A risk is also accepted if management considers the risk necessary and tolerable for business.
Acceptable use policy (AUP) | A policy that informs employees what is considered acceptable use for IT systems and data. Banners and logon screens are sometimes used to remind personnel of the policy.
Account management policy | A written policy created to ensure that user and computer accounts are managed securely. It identifies details for creating accounts, such as using a firstname. lastname format. It specifies what to do with unused accounts. It can also include requirements for ...
Get Managing Risk in Information Systems, 2nd Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
