Planned Site Maintenance
Due to scheduled maintenance, account creation for new Community users will be unavailable 11 a.m. Eastern October 23, 2020 – October 24, 2020. We apologize for any inconvenience.
TheConcept of Neutral Risk, based on the risk definition of ISO 31000,introduces thebusiness mindsetof seizingopportunitiesand avoidingthreatsto highlight that information security is not only abusiness enablerbut also abusiness driver.
ThePeacock Modelis a notion of information systems that extends the definition defined by 44 U.S.C, Sec 3502. TheOnion Modeldenotes the concept of layered defense or defense in depth.
TheRing Modelis derived from theNIST Generic Risk Modelto specify risk in the context of information security.