Ch 1 - SecSDLC
About this set
Created by:
Electrorganic on February 1, 2011
Subjects:
Description:
Principles of Information Security - Whitman & Mattord - Cengage 4th
Log in to favorite or report as inappropriate.
Order by
13 terms
Terms | Definitions |
|---|---|
 SecSDLC | SDLC phases adapted for an info security project |
| Investigation | begins with directive from management, scope, goals, objective |
| Analysis | existing security examined, threats and controls assessed |
| Risk Management | evaluating threat levels |
| Logical Design | blueprints, incident responses planned |
| Physical Design | final design, definition of success |
| Implementation | security solutions obtained, tested, implemented, tested again - training and approval submit |
| Maintenance and Change | monitor, test, modify, update, repair/reconstruction |
| reconstruction | software repair after an attack |
| Enterprise Info Security Policy | EISP acronym |
| outlines the implementation of a security program within an org | EISP definition |
| general security policy | What EISP is also known as |
| EISP | what the investigation phase begins with |
First Time Here?
Welcome to Quizlet, a fun, free place to study. Try these flashcards, find others to study, or make your own.