Fandom

The IT Law Wiki

NIST Special Publication 800-55

32,167pages on
this wiki
Add New Page
Talk0 Share

Ad blocker interference detected!


Wikia is a free-to-use site that makes money from advertising. We have a modified experience for viewers using ad blockers

Wikia is not accessible if you’ve made further modifications. Remove the custom ad blocker rule(s) and the page will load as expected.

Citation Edit

NIST, Security Metrics Guide for Information Technology Systems (NIST Special Publication 800-55) (July 2003) (full-text).

Overview Edit

This document provides guidance on how an organization, through the use of metrics, can identify the adequacy of in-place security controls, policies, and procedures. It provides an approach to help management decide where to invest in additional security protection resources or identify and evaluate nonproductive controls. It explains the metric development and implementation process and how it can also be used to adequately justify security control investments. The results of an effective metric program can provide useful data for directing the allocation of information security resources and should simplify the preparation of performance-related reports.

Also on Fandom

Random Wiki