Chapter 11

Security Component Fundamentals for Assessment


Specific security fundamentals for management controls, operational controls, and various technical controls are defined and discussed with emphasis on what areas are important for testing and evaluation


management controls
operational controls
technical controls
The key to the management, oversight, and governance of the security components and program in the organization is the understanding of the risks involved and how each is treated and tolerated by the organization. As the assessor for a US governmental system, it is important to grasp and work with the fundamental requirements for these systems. With the SP 800-53 structured approach to security ...

Get Security Controls Evaluation, Testing, and Assessment Handbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.