Daily Archives: March 24, 2014

iRisk

Posted on March 24, 2014 by Carmelo

iRisk, or the iRisk equation is another quantitative analysis formula. Like most quantitative analysis models, you solve for the risk by calculating the threat and vulnerability, and lower the risk when mitigating or compensating controls are added. Here is where … Continue reading →

Posted in Security Blog | Tagged 2014, fair, irisk, ISO 27001, ISO 27005, NIST 800-39, NIST 800-53, octave, quantitative, risk analysis | Comments Off

BCJs in an SSAE-16

Posted on March 24, 2014 by Carmelo

I looked everywhere for this acronym that I found while processing a Type II SSAE-16. I guessed pretty close, but since someone helped me find it, you may have to google it one day and hopefully you will find that: … Continue reading →

Posted in Security Blog | Tagged 2014, BCJ, SSAE-16 | Comments Off

S	M	T	W	T	F	S
						1
2	3	4	5	6	7	8
9	10	11	12	13	14	15
16	17	18	19	20	21	22
23	24	25	26	27	28	29
30	31

Daily Archives: March 24, 2014

iRisk

Share

BCJs in an SSAE-16

Share

Blog Stats