Risk Assessment
- From: timpacalypse@xxxxxxxxx
- Date: 18 May 2006 14:32:37 -0000
This is quickly becoming one of my favorite sites ever.
Anyway, I posted a message in the Focus on Microsoft List about securing FE/BE Communications in Exchange. I was presented with many options. And with all of those options was a common theme. Risk assessment.
I know that people make entire careers out of risk assessment. But I was wondering if anyone could point me to a source that gives a general outline how to quantitatively calculate risk so that something can be presented to management in the form of numbers. It'll be nice to come to someone with something more concrete than..."well, it could happen."
Oh yeah, I don't have an IDS or anything so it's not like I can go to them and say this is how many times we get scanned, etc.
- Follow-Ups:
- RE: Risk Assessment
- From: David Gillett
- RE: Risk Assessment
- From: Murad Talukdar
- RE: Risk Assessment
- Prev by Date: RE: Article: "Security Absurdity: The Complete, Unquestionable, And Total Failure of Information Security."
- Next by Date: Tons of Source port 80 to random Dest Port Traffic
- Previous by thread: How to verify a decrypted cyphertext
- Next by thread: RE: Risk Assessment
- Index(es):
Relevant Pages
|
|
