2023 IT Examiner School

First page Table of contents Previous page 197 Next page Last page

Internal Use Only

Information Security Program Processes

Written Security Program

Identify Risks/Threats

Define written ISP

Implement Program

Test and Review

Enforce Program

Internal Use Only

Types of Risk Assessments

 GLBA/Information Security  IT (often combined with InfoSec)  Business Continuity Planning  Audit  ID Theft/Red Flags  Internet-banking Authentication

 Cybersecurity  Individual products or services

 ACH  RDC  BSA

Made with FlippingBook - Share PDF online