For this part of the series we will focus on defining terms related to the Risk Analysis process, and touch on Information Asset valuation methods. These concepts are critical to understand when justifying the necessity and expense of a Pen Test. Companies want sustainability and survivability. As the Blaster and Sobig worms taught companies in recent weeks, a single worm can shut down a network, congest mail servers, reboot servers, crash desktop systems and wreak havoc in the information systems environment. Loss of productivity for the general employee population, over-time pay for systems and network administrators, data loss, and the impact of loss revenue opportunity will not soon be forgotten. These types of events make justification for security initiatives more readily accepted, but let us not be distracted from the goal and fall back on the FUD factor.
Read Entire Paper
E-Mail Link
Your IP address will be sent with this e-mail
