Topic 1 DQ 1: Security and Privacy Controls in Federal Information Systems and Organizations (2013)

Review the following special publications, then pick one and explain a real-world scenario in which a security professional would use this resource. Express why it is beneficial.

• SP 800-37, Rev. 2: Guide for Applying the Risk Management Framework to Federal Information Systems: A Security Life Cycle Approach (2010)
• SP 800-39: Managing Information Security Risk: Organization, Mission, and Information System View (2011)
• SP 800-53, Rev. 5: Security and Privacy Controls in Federal Information Systems and Organizations (2013)
• ISO 27001: 2013 Information Security Management System Specification

Tutorial for  Security and Privacy Controls in Federal Information Systems and Organizations (2013)