Security Control Frameworks Flashcards
1
Q
COBIT 5 principles
A
- Meeting stakeholder needs
- Covering enterprise end to end
- Applying a single, integrated framework
- Enabling a holistic approach
- Separating governance from management
2
Q
Open Source Security Testing Methodology Manual (OSSTMM)
A
Peer reviewed guide for testing + analysis of security infrastructure
3
Q
ISO/IEC 27002
A
International standard, basis of implementing organizational security + related management practices
4
Q
ITIL - Information Technology Infrastructure Library
A
Set of recommended best practices for core IT security + operational processes; starting point for crafting customized IT security solution