- CIS Security Risk Management Application
The CIS Security Risk Management Application enables users to plan risk management, assess risk by analysing the threats, analyse the values of information and services as derived from the mission objectives, analyse the vulnerabilities and dependencies of the CIS, and evaluate the risk based on these assessments, in support of Security Accreditation. Final goal is the verification that the implemented CIS security measures conform to the minimum security requirements as defined in policy. This verification is generally performed through the analysis and inspection of documentation and/or the CIS itself. The Risk Management Application also enables validation of the management of risk during the design, implementation and operation of the CIS to make sure it is correct and adequate.