Enterprise Assessment and Monitoring Policy

Subscriber Content
Screenshot of the first page of Enterprise Assessment and Monitoring Policy
Procedures for Conducting a Company-Wide Security Assessment

The major objectives of a security assessment are to validate conformance to existing security policies, standards and procedures; identify inadequacies and examine the effectiveness of the existing policies, standards, guidelines and procedures; identify and understand potential vulnerabilities; review existing security controls associated with operational, administrative and managerial functions and ensure compliance to minimum security standards; and provide recommendations and corrective actions for improvements.

The purpose of this policy is to develop a consistent method for scheduling and managing company IT security assessment processes.


Topics

Related Resources

Benchmarking Tools

Enterprise Security Key Performance Indicators (KPIs)

Audit Reports

Enterprise Risk Assessment Board Report

Guides

Enterprise Risk Assessment Methodology for Internal Audit Plan Development Guide

Free Trial

Sign up for a free, no-obligation trial to start exploring our timesaving, valuable resources.

Let's Do It