Policy
Standards
Guidelines
Procedures
Strategy
Metrics
Support
Information Security Articles
   Search






(Your shopping cart is empty)
You are here: Home > Guidelines
The guideline documents available to support information security define:
  • how to properly handle classified information throughout its life cycle, and
  • how to run a threat risk assessment to determine the appropriate level of security required for an information asset.
Sort By:
Page of 1  
An example of the handling guideline for storing information.

5. Information Handling Guideline
Our Price: $US 42.75

Information sensitivity requires the classification, labelling, and appropriate handling of information assets. This document prescribes a guideline for how to properly handle information assets based on their sensitivity classification. This guideline is an addendum to the “Information Security Classification Standard”. As a guideline it provides recommended best practices that should be followed for the protection of your information assets.

The file in this licensed set is:

  • Information Handling Guideline
This handling guideline is base on the usual life cycle flow of information that describes the capture, storage, management, delivery, retention, and final disposition of the asset. It is at a guideline level to imply the importance of the end effect of protecting the information and not on the importance of the specific handling techniques used; the actual procedures used could vary depending on specific business requirements. Consider this document to be a list of recommended "best practices". Size: 16 pages
Part of the IPO (input, process, output) chart for conducting a TRA.

6. Threat Risk Assessment Guideline
Our Price: $US 62.25

Information security requires an understanding of the threats and risks of an information assets. This document prescribes a guideline for how to properly determine the information profile, vulnerabilities, threats and risks relevant to your information assets; referred to as a threat risk assessment (TRA). As a guideline it provides recommended best practices that should be followed to determine the proper protection required for your information assets.

The files in this licensed set are:

  • Threat Risk Assessment Guideline
  • Threat Risk Assessment Template

Supporting diagrams and presentation:

  • Information Asset Protection
  • Risk Assessment Process
  • Threat Risk Assessment Example
  • Threat Risk Assessment Fundamentals

The TRA Guideline details the 9-step process used to conduct a threat risk assessment, either in detail for the asset and all related processes, or as a summary to support the narrower scope required for a new system or process that utilizes the asset. The Information Asset Protection and Risk Assessment Process presentations along with the Threat Risk Assessment Example spreadsheet provide the diagrams used in the guideline. The Fundamentals presentation helps explain the Risk Management process when communicating with company personnel.

Size: 56 pages
   
 
 About Us
 Privacy Policy
 Send Us Feedback