... "various forms of supervision and inspection used to ensure that important information security activities and controls are operating properly, and to identify any anomalies" [source: SecAware glossary]
... "forgetfulness, carelessness, neglect or incompetence, typically leading to errors, omissions and other information security incidents"
[source: SecAware glossary]
... absent from ISO/IEC 27002 except for one measly mention (clause 5.16)
... maintaining a watching brief
... an opportunity to review
... the four eyes principle
... the act of overseeing
... the prompt to revisit
... keeping a close eye
... hands off, eyes on
... something missed
... a sign of distrust
... an opportunity
... a vulnerability
... a sign of trust
... incompetence
... management
... carelessness
... an omission
... an accident
... an override
... supervision
... inspection
... ineptitude
... a problem
... assurance
... a mistake
... authority
... guidance
... a control
... checking
... freedom
... a threat
... skipped
... neglect
... caring
... a risk
... audit
...
Seeing as you're in a pensive mood, check out these provocative bloggings too:
- Accountability is ...
- Assurance is ...
- Audit is ...
- Authorisation is ...
- Control is ...
- Cyber is ...
- Fragility is ...
- Governance is ...
- Impact is ...
- Information is ...
- ISO27k is ...
- Resilience is ...
- Responsibility is ...
- Risk is ...
- Security is ...
- System is ...
- Threat is ...
- Trust is ...
- Vulnerability is ...
No comments:
Post a Comment
The floor is yours ...