Explain security frameworks ISO, NIST, COBIT How are they predominately used? What are their strengths? What are their weaknesses? Are they general or specific? What is a setting (small business, school, home office, etc.) that you would recommend for each of these?
Explain security frameworks ISO, NIST, COBIT How are they predominately used? What are their strengths? What are their weaknesses? Are they general or specific? What is a setting (small business, school, home office, etc.) that you would recommend for each of these?
Computer Networking: A Top-Down Approach (7th Edition)
7th Edition
ISBN:9780133594140
Author:James Kurose, Keith Ross
Publisher:James Kurose, Keith Ross
Chapter1: Computer Networks And The Internet
Section: Chapter Questions
Problem R1RQ: What is the difference between a host and an end system? List several different types of end...
Related questions
Question
Explain security frameworks ISO, NIST, COBIT How are they predominately used? What are their strengths? What are their weaknesses? Are they general or specific? What is a setting (small business, school, home office, etc.) that you would recommend for each of these?
Expert Solution
Step 1
Answer:
security frameworks
The Process includes a shared vocabulary and a structured risk assessment approach. The Center requires tasks that must be included in a cybersecurity program designed to accommodate the needs of any company. This system is intended to support the cybersecurity program and risk management processes of an enterprise, not to replace them.
- The framework profile development process helps enterprises to define areas for improving current procedures or introducing new processes. When contrasted with the easy-to-understand vocabulary of the System, these profiles make for stronger collaboration within the organization.
- The combination of a System Profile and Development plan helps an organization to completely leverage the framework by allowing a cost-effective goal setting and coordination with corporate members of improvements initiatives, or by setting goals with suppliers and partners. Profiles and related deployment plans c In addition,
- The Framework's implementation levels portion will support organizations by contextualizing how a company views cybersecurity risk management. Tiers lead organizations to consider their cybersecurity program's acceptable level of rigor. Tiers should be used to communicate about task priority, the risk appetite, and the budget as a medium for coordination.
Trending now
This is a popular solution!
Step by step
Solved in 2 steps
Recommended textbooks for you
Computer Networking: A Top-Down Approach (7th Edi…
Computer Engineering
ISBN:
9780133594140
Author:
James Kurose, Keith Ross
Publisher:
PEARSON
Computer Organization and Design MIPS Edition, Fi…
Computer Engineering
ISBN:
9780124077263
Author:
David A. Patterson, John L. Hennessy
Publisher:
Elsevier Science
Network+ Guide to Networks (MindTap Course List)
Computer Engineering
ISBN:
9781337569330
Author:
Jill West, Tamara Dean, Jean Andrews
Publisher:
Cengage Learning
Computer Networking: A Top-Down Approach (7th Edi…
Computer Engineering
ISBN:
9780133594140
Author:
James Kurose, Keith Ross
Publisher:
PEARSON
Computer Organization and Design MIPS Edition, Fi…
Computer Engineering
ISBN:
9780124077263
Author:
David A. Patterson, John L. Hennessy
Publisher:
Elsevier Science
Network+ Guide to Networks (MindTap Course List)
Computer Engineering
ISBN:
9781337569330
Author:
Jill West, Tamara Dean, Jean Andrews
Publisher:
Cengage Learning
Concepts of Database Management
Computer Engineering
ISBN:
9781337093422
Author:
Joy L. Starks, Philip J. Pratt, Mary Z. Last
Publisher:
Cengage Learning
Prelude to Programming
Computer Engineering
ISBN:
9780133750423
Author:
VENIT, Stewart
Publisher:
Pearson Education
Sc Business Data Communications and Networking, T…
Computer Engineering
ISBN:
9781119368830
Author:
FITZGERALD
Publisher:
WILEY