The present document describes a set of methodologies that combine security risk assessment and security testingactivities in a systematic manner. This includes both risk assessment aimed to improve security testing and test basedactivities used to improve the security risk assessment. The methodologies are built upon a collection of consistentlyaligned activities with associated rules, methods and best practices. The activities are described in such a way that theyprovide guidance for the relevant actors in security testing and security risk assessment processes (i.e. actors in the roleof a security tester, security test manager, and/or risk assessor). The activities and their level of specification are basedon standards like ISO 31000 [i.10], IEEE™ 829-2008 [i.6] and ISO 29119 [i.9] so that they apply for a larger number ofsecurity testing and risk assessment processes on hand.
- Edition:
- 1.1.1
- Published:
- 07/01/2016
- Number of Pages:
- 34
- File Size:
- 1 file , 760 KB
- Note:
- This product is unavailable in Russia, Ukraine, Belarus
Reviews
There are no reviews yet.