Difference between revisions of "ESA Tools"

From wiki
Jump to navigation Jump to search
(Created page with "<div class="center"><div style="float: right; z-index: 10; position: absolute; right: 0; top: 1;">File:JoinusonGCconnex.png|link=http://gcconnex.gc.ca/groups/profile/2785549...")
Line 21: Line 21:
! style="background: #d7d7d7; color: black" width="25%" scope="col" | [[Threat Assessment Tool]]
! style="background: #d7d7d7; color: black" width="25%" scope="col" | [[Threat Assessment Tool]]
</div></div>{{Delete|reason=Expired Content}}
== Introduction ==
To facilitate the integration of security into existing business practices and processes, a set of tools and templates have been developed to support practitioners when implementing their IT security risk management activities.
The following tools are currently available:
* [[Security Categorization Tool]]
* [[Business Needs for Security Tool]]
* [[Threat Assessment Tool]]
** [[Media:GC ESA Enterprise Threat Assessment for Executives.pdf|GC ESA Enterprise Threat Assessment]] - This document provides a framework for the balanced consideration of system exposure, threat vectors, GC-wide threat scenarios, and common vocabulary. It provides a baseline of considerations that should be included when conducting departmental Threat and Risk Assessments. These considerations look at all aspects of IT systems security to ensure that information system security controls are not over or underspecified.
[[Category:Enterprise Security Architecture]]

Latest revision as of 13:39, 20 April 2021