NIST SP 800-30 Guide for Conducting Risk Assessments 3.11 3.11.1 Risk Assessment
This NIST Special Publication provides guidance for conducting risk assessments.
SEARCH RESULTS
Open Web Application Security Project (OWASP) – Vulnerability Scanning Tools 3.11 3.11.2 Risk Assessment
Open Web Application Security Project (OWASP) provides a list of commercial and free vulnerability scanning tools for various platforms.
SANS – Risk Assessment Policy 3.11 3.11.1 Risk Assessment
This SANS provided policy discusses performing periodic information security risk assessments.
SANS Whitepaper – Building a Vulnerability Management Program – A Project Management Approach 3.11 3.11.3 3.14 3.14.1 Risk Assessment System and Information integrity
This SANS whitepaper examines the role of project management in building a successful vulnerability management program.
SANS Whitepaper – Implementing a Vulnerability Management Process 3.11 3.11.1 3.11.2 3.11.3 3.14 3.14.1 Risk Assessment System and Information integrity
This SANS whitepaper looks at how a vulnerability management process could be designed and implemented within an organization.
SANS Whitepaper – Vulnerabilities & Vulnerability Scanning 3.11 3.11.2 Risk Assessment
This SANS whitepaper discusses the benefits and pitfalls of Vulnerability Scanning suggests an approach suitable for small and medium-sized businesses.
State of Alabama – Vulnerability Scanning Policy 3.11 3.11.2 Risk Assessment
The following is an example from the state of Alabama of a vulnerability scanning policy.
Tripwire – Vulnerability Management Program Best Practices 3.11 3.11.2 Risk Assessment
In this article from Tripwire, they discuss the four stages of a vulnerability management program
Wiz.io – 11 Vulnerability Management Best Practices 3.11 3.11.2 Risk Assessment
In this article from Wiz, they discuss the 11 essential vulnerability management best practices organizations should start with.