Governance, Risk, and Compliance

From Smithnet Wiki
Revision as of 04:53, 8 May 2024 by NickPGSmith (talk | contribs) (2 revisions imported)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

Risk Analysis

Risk Assessment

Quantitative risk assessment

Risk types

Information classification

Risk Management

Risk treatment options

Categorising risk management

Risk management frameworks

Control frameworks

Risk visibility and reporting

Data security roles

Supply Chain Risk

Managing vendor relationships

Vendor agreements

Vendor information management

Audits and assessments

Cloud audits

Security Policies =

Security policy framework

Security policies

Privacy and Compliance

Legal and compliance risks

Data privacy

Data breaches

Privacy Enhancing Technologies

Data anonymisation

Data obfuscation

Security Awareness and Training

Security education

User habits

Separation of duties