Risk Management Reference Materials

| General References | Policies, Procedures, & PracticesRisk Assessment | Risk Mitigation |
| Security Tools | Vendors |

  1. Information Systems- the source of the vulnerabilities that can be exploited

  2. Cyber Crimes- the threats created by those who want to exploit the vulnerabilities

  3. Risk Management- the strategies and tactics used by an organization to manage the risks created by the combination of vulnerabilities and threats

  4. Incident Investigations- the "response" mode in the risk management strategy in which investigations are conducted and prosecution is pursued.

Information technologies, notably digital networks, are mission critical resources for both public and private sector organizations. Since network resources have vulnerabilities that can be exploited and perpetrators who present a threat by trying to exploit the vulnerabilities, it is incumbent upon management to properly manage the risks. Generally the risk management strategy involves some combination of accepting, sharing, or mitigating the risks. The later usually involves some combination of prevention, detection, and correction/recovery strategies.

General References

Policies, Procedures, and Practices

 

Risk Assessment

  •  

Risk Mitigation- Prevention, Detection, Correction/Recovery

Security Tools

  • PC Flank, an impressive list of resources to help lockdown computers

Vendors (source of products and informative whitepapers)

   
Cyber Crimes, Security, and Forensics Topics  
 | Vulnerabilities | Threats | Risks | Response |

| Links Index | Home | Top |

Ronald R. Tidd, Ph.D., CPA
509.963.2466
© 2001-2008 All rights reserved.