Term:Assessment Procedure

From FISMApedia
Revision as of 00:38, 27 October 2009 by DanPhilpott (talk) (1 revision)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

NIST IR 7298

Assessment Procedure - A set of activities or actions employed by an assessor to determine the extent to which a security control is implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements for the system. SOURCE: SP 800-53

NIST IR 7328 Draft

Assessment Procedure - One or more procedural steps that are created to achieve a set of assessment objectives by applying assessment methods to assessment objects.

NIST SP 800-37

Assessment Procedure - A set of activities or actions employed by an assessor to determine the extent to which a security control is implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements for the system.

NIST SP 800-53A

Assessment Procedure - A set of assessment objectives and an associated set of assessment methods and assessment objects.

NIST SP 800-79-1

Assessment Procedure - A set of activities or actions employed by an Assessor to determine the extent that a PCI control is implemented and used by a PCI.

Retrieved from "http://fismapedia.org/index.php?title=Term:Assessment_Procedure&oldid=33334"