Information Security Risk Assessment_ Practices of Leading Organizations

Author(s)
U.S. Government Accountability Office
 
Date
1999
 
 
Abstract
Because of its growing reliance on information technology, the government faces the continuing challenge of addressing computer security risks. This guide is intended to help federal managers implement an ongoing information security risk-assessment process by providing case studies of practical risk-assessment procedures that have been successfully adopted by four organizations--a multinational oil company, a financial services firm, a regulatory agency, and a computer company--known for their efforts to implement good risk-assessment practices. More importantly, GAO identifies factors that are important to the success of any risk-assessment program, regardless of the methodology used.
 
Access through the Cases and Simulations Portal from Rutgers SPAA
Copyright © 2017, Rutgers, The State University of New Jersey. All rights reserved.