« CyTRAP Labs security tip - instructions on how to lock your computer
Apple embeds email address in DRM-free downloads - NOT BUT … »

Urs+Nahum’s Checklist - risk assessment star values

There are an ever growing number of

- standards,

- guidelines,

- checklists, and

- assessment instruments

with which organizations are expected to demonstrate some level of compliance. Unfortunately, firms have been buried in an avalanche of paper requirements.

Urs+Nahum’s Checklist is a tool that uses the star-ranking system as presented below to help guide organizational efforts to improve risk management and faciliate internal controls.

CyTRAP Labs 5-star ranking system
***** severe The lowest hanging fruits, cheapest and easiest to implement upfront, or when absolutely no waiting is allowed (i.e., if legal compliance is required)
category critical Less easy to implement, but still short term
category essential Equally essential as are the higher ratings, but realistically slower or more expensive to implement
category elevated Should be considered, especially if the resources allowed and the higher ratings have already been implemented
category low Nice to have

Urs+Nahum’s Security Checklist provides well structured information that enables high-level reporting, thus empowering executive and technical leaders with a greater ability to make informed decisions. It prioritizes numerous requirements that managers need, guiding them through the process that improves corporate risk management and
information security.

You can find a summary about this security checklist here:

- 2007-05-30 Summary Info - Urs+Nahum’s Security Checklist ISBN: 978-0-9783768-0-2

    A comprehensive rated checklist of comparative security metrics for Small and Medium Enterprises (SMEs)

If you wish to download the latest complementary version, visit here and do so right now, it is free:

- Home of Urs+Nahum’s Security Checklist

In summary, the above checklist provides the prioritization of requirements that managers need. It offers guidance where one must start to improve risk management and information security to achieve better corporate governance.

We hope that Urs+Nahum’s Security Checklist will be of some help to you and we look forward to your comments about this document.
SUBSCRIPTIONTo make it more convenient for you to take advantage of CyTRAP Labs’ offerings, just provide us with your e-mail address below. You can personalize your subscription to make it suit your needs.

Your email:  
subscribe unsubscribe  

Technorati , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,

This entry was posted on Friday, June 1st, 2007 at 15:52 and is filed under

WordPress database error: [Can't find file: './Blog/wp_post2cat.frm' (errno: 13)]
SELECT post_id, category_id FROM wp_post2cat WHERE post_id IN (295)

Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

WordPress database error: [Table './Blog/wp_comments' is marked as crashed and last (automatic?) repair failed]
SELECT * FROM wp_comments WHERE comment_post_ID = '295' AND comment_approved = '1' ORDER BY comment_date

Leave a Reply

WordPress database error: [Table './Blog/wp_comments' is marked as crashed and last (automatic?) repair failed]
DESC wp_comments


Warning: Invalid argument supplied for foreach() in /var/www/hosts/cases/blog/wp-content/plugins/subscribe-to-comments.php on line 676

WordPress database error: [Table './Blog/wp_comments' is marked as crashed and last (automatic?) repair failed]
ALTER TABLE wp_comments ADD COLUMN comment_subscribe enum('Y','N') NOT NULL default 'N'

Protected by WP-Hashcash.