Information Security Risk Assessment: Practices of Leading Organizations (Exposure Draft)
AIMD-99-139
Published: Aug 01, 1999. Publicly Released: Aug 01, 1999.
Skip to Highlights
Highlights
GAO published a guide to aid federal managers in implementing an ongoing information security risk assessment process. GAO provided case studies of practical risk assessment procedures that have been successfully adopted by four organizations known for their efforts to implement good risk assessment practices.
Full Report
Office of Public Affairs
Topics
Computer securityConfidential communicationsData integrityHackersInformation resources managementInformation securityInformation systemsInternal controlsPrivate sector practicesRisk assessmentRisk management