All Security & Privacy charts displayed on the JDBiggs & Associates website are for informational purposes only and do not reflect the most current release.
The Security Assessment Report (SAR) Methodology is our process and strategy for evaluating the documented risks and mitigation recommendations reported in
- Security Control Assessment (SCA) Test Cases (Interviews / Examinations / Tests)
- Vulnerability Assessment Tools / Reports
- Penetration Tests / Reports
- Contingency Tests / Reports
- Existing Plan of Action & Milestone (POA&M)
The Independent Assessor / 3PAO must apply the SAR Methodology after completing testing, interviews and examination of Security Authorization Package documentation.
Security Authorization Documentation
| |
|
|
- Security Assessment Plan (SAP)
|
| |
|
|
- Privacy Threshold Analysis (PTA)
|
| |
|
- Business Impact Assessment (BIA)
|
- System Security Plan (SSP)
|
| |
|
- Privacy Impact Assessment (PIA)
|
- I.S. Contingency Plan (ISCP)
|
| |
|
- E-Authentication Risk Assessment
|
- Incident Response Plan (IRP)
|
| |
|
- Configuration Management Plan (CMP)
|
- Penetration Test (PenTest) Report
|
| |
|
- Rules of Engagement (ROE)
|
- Risk Assessment Report (RAR)
|
| |
|
- Security Control Assessment (SCA) Test Cases
|
- Vulnerability Assessment Report (VAR)
|
| |
|
- Memorandum of Understanding (MOU)
|
- Interconnection Security Agreement (ISA)
|
| |
|
- Plan Of Action & Milestones (POA&M)
|
- Continuous Monitoring Plan
|
| |
|
- Security Assessment Report (SAR)
|
READ MORE.....