From the course: Cloud Security Operations by Pearson
Join today to access over 25,200 courses taught by industry experts.
Gap analysis and internal InfoSec management systems
From the course: Cloud Security Operations by Pearson
Gap analysis and internal InfoSec management systems
The Compliance Security Test and Evaluation, or MACRO-STNE, will assess the operational plan or planned implementation of suitable controls in the cloud. The conducted tests will include assessments, audits, security reviews, vulnerability assessment, The results are a risk assessment report that represents a gap analysis, documenting the system, application, or data risk. The key first step to improving the organizational security and compliance would be using things like NIST SP 800-171, ITAR if relevant, and other critical security-focused standards. The ITAR, International Traffic and Arms Regulations, is a U.S. regulation that controls the export and import of defense articles and services on the USML, United States Munitions List. So auditors and GAP analyzers need to help determine who needs to change to meet laws and regulations, such as ITAR. The new ITIL 4 Service Value System, SVS, describes the chain of activities needed to convert a business opportunity or demand for a…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
-
-
(Locked)
Audit controls, reports, and their impact1m 59s
-
(Locked)
Gap analysis and internal InfoSec management systems2m 41s
-
(Locked)
Policies and stakeholder involvement4m 21s
-
(Locked)
Specialized compliance requirements2m 55s
-
(Locked)
The impact of distributed IT3m 33s
-
(Locked)
Business agreement requirements2m 56s
-
(Locked)
Supply chain management1m 28s
-
(Locked)
-