
Technical Data Gathering ◾ 235
© 2011 by Taylor & Francis Group, LLC
7.2.1.2.1 Security Reports Review
e security risk assessment team, or a member of the team, should review the
available security reports to gain a perspective on the inputs to the current security
risk assessment. e objective of this review is not to judge the completeness or
correctness of past reviews, but to use information gathered during past eorts to
Table7.3 Technical Documents to Request
Document Type Sample Titles
System information • Network diagram/map
• Addressing scheme
Previous security risk assessments • Security risk assessment
• Security audit report
• Security ...