Defining a Risk Assessment Process for Federal Security Personnel

One goal of this paper is to provide general guidance on security resources for federal information system security officers within a federal agency. Another goal is to provide a basic template or outline for preparing to conduct a risk assessment as part of the agencyÂ’s electronic and physical systems accreditation and certification process as required by Office of Management and Budget (OMB) Circular No A-130, Appendix III, the Computer Act of 1987, and other federal mandates.

Tags:

Read the complete paper at SANS