1. CSF
COMMON SECURITY FRAMEWORK
INFORMATION SECURITY MANAGEMENT PROGRAM
ACCESS CONTROL
HUMANA RESOURCE SECURITY
RISK MANAGEMENT
SECURITY POLICY
ORGANIZATION OF INFORMATION SECURITY
COMPLIANCE
ASSET MANAGEMENT
COMMNICATIONS AND OPERATIONS MANAGEMENT
INFORMATION SYSTEMS AQUISITION
PHYSICAL ENVIRONMENT SECURITY
(07)
(06)
(08)
(09)
(10)
(11)
(05)
(04)
(03)
(02)
(01)
Authored by; Jason P. Rusch - CISSP, CISM, CISA
INFORMATION SECURITY INCIDENT MANAGEMENT
BUSIENSS CONTINUITY MANAGEMENT
DEVELOPMENT AND MAINTENANCE
(12)
(13)
(14)
2 COMPONENTS
INFORMATION SECURITY IMPLEMENTATION MANUAL STANDARDS/REGULATIONS MAPPING
42 CONTROL OBJECTIVES
135 CONTROL SPECIFICATIONS
3 IMPLEMENTATION LEVELS
13 SECURITY CONTROL CATEGORIES