NIST SP 1800-25, titled “Data Integrity: Identifying and Protecting Assets Against Ransomware and Other Destructive Events,” provides practical guidance for organizations to identify, protect, and… Read More »NIST SP 1800-25 Data Integrity: Identifying and Protecting Assets Against Ransomware and Other Destructive Events
The MITRE Common Attack Pattern Enumeration and Classification (CAPEC) is a publicly available, comprehensive catalog that documents and categorizes common attack patterns used by adversaries… Read More »MITRE CAPEC – Common Attack Pattern Enumeration and Classification Version 3.9
NIST Special Publication 800-37, Revision 2, titled “Risk Management Framework for Information Systems and Organizations: A System Life Cycle Approach for Security and Privacy,” provides… Read More »NIST SP 800-37 Rev. 2 Risk Management Framework for Information Systems and Organizations: A System Life Cycle Approach for Security and Privacy
The CSA Big Data Security and Privacy Handbook provides a comprehensive guide to best practices for securing and protecting privacy in big data environments. Structured… Read More »CSA Big Data Security and Privacy Handbook
NIST Special Publication 800-30, titled “Guide for Conducting Risk Assessments,” provides comprehensive guidance for organizations to conduct risk assessments of federal information systems and organizations.… Read More »NIST SP 800-30 Rev. 1 Guide for Conducting Risk Assessments
Security Technical Implementation Guides (STIGs) are detailed, prescriptive documents developed by the Defense Information Systems Agency (DISA) that define standardized security configurations and requirements for… Read More »US DOD Security Technical Implementation Guides (STIGs)
CIS Benchmarks are comprehensive, consensus-driven security guidelines developed by the Center for Internet Security to help organizations securely configure a wide range of IT systems,… Read More »CIS Benchmarks