Which Best Practices Are Best For Me? Version 1.0

Abstract

Our objective is to present an alternative way for you and your organization to think about information security best practices and to provide you with an approach for evaluating and selecting best practices in your organization. Summary: Organizations should decide for themselves which best practices are best for them using security requirements, risk, practicality, and value as the primary selection criteria. A data driven approach (IAP) provides a framework for organizations to make informed choices when selecting best practices to implement.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2004
Accession Number
ADA621881

Entities

Organizations

  • Carnegie Mellon University

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Best Practices
  • Boundaries
  • Business Administration
  • Department Of Defense
  • Human Resources
  • Information Operations
  • Information Processing
  • Information Security
  • Information Systems
  • Knowledge Management
  • Risk
  • Risk Analysis
  • Risk Management
  • Security
  • Software Development
  • Standards
  • Unauthorized Disclosure

Readers

  • Organizational Process Management (OPM).
  • Systems Analysis and Design