From the course: IT and Cybersecurity Risk Management Essential Training
Join today to access over 24,000 courses taught by industry experts.
Choosing controls
From the course: IT and Cybersecurity Risk Management Essential Training
Choosing controls
- [Instructor[ You know that controls help you reduce risk, but you must choose them wisely or you can destroy more value than you create. In this lesson, I'll show you how you can choose controls appropriate to your situation. First of all, it would be helpful if there was a list of controls that you could pick from any time you needed one. Well, fortunately there are control catalogs that you can use. Both NIST and ISO offer catalogs of controls. There's Special Publication 800-5, recommended security controls for federal information systems and organizations, and there's ISO 27002, the code of practice for information security controls. Now the NIST catalog is free, and the ISO catalog costs money for you to access. Now, you can also choose controls from other standards, like the Center for Internet Security's critical security controls, the Payment Card Industry data security standard, or even the Australian…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.