{"product_id":"nist-sp-800-115-technical-guide-to-information-security-testing-and-assessment-nist-sp-800-115-paperback","title":"NIST SP 800-115 Technical Guide to Information Security Testing and Assessment: NiST SP 800-115 - Paperback","description":"\u003cp\u003eby \u003cb\u003eNational Institute of Standards and Tech\u003c\/b\u003e (Author)\u003c\/p\u003e\u003cp\u003eNIST SP 800-115 September 2008 \u003c\/p\u003e\u003cp\u003e\u003c\/p\u003eAn information security assessment is the process of determining how effectively an entity being assessed (e.g., host, system, network, procedure, person-known as the assessment object) meets specific security objectives. Three types of assessment methods can be used to accomplish this-testing, examination, and interviewing. Testing is the process of exercising one or more assessment objects under specified conditions to compare actual and expected behaviors. Examination is the process of checking, inspecting, reviewing, observing, studying, or analyzing one or more assessment objects to facilitate understanding, achieve clarification, or obtain evidence. Interviewing is the process of conducting discussions with individuals or groups within an organization to facilitate understanding, achieve clarification, or identify the location of evidence. Assessment results are used to support the determination of security control effectiveness over time. \u003cp\u003e\u003c\/p\u003e\u003cb\u003eWhy buy a book you can download for free?\u003c\/b\u003e \u003cp\u003e\u003c\/p\u003eFirst you gotta find it and make sure it's the latest version, not always easy. Then you gotta print it using a network printer you share with 100 other people - and its outta paper - and the toner is low (take out the toner cartridge, shake it, then put it back). If it's just 10 pages, no problem, but if it's a 250-page book, you will need to punch 3 holes in all those pages and put it in a 3-ring binder. Takes at least an hour. An engineer that's paid $75 an hour has to do this himself (who has assistant's anymore?). \u003cp\u003e\u003c\/p\u003eIf you are paid more than $10 an hour and use an ink jet printer, buying this book will save you money. \u003cp\u003e\u003c\/p\u003e\u003cb\u003eIt's much more cost-effective to just order the latest version from Amazon.com\u003c\/b\u003e \u003cp\u003e\u003c\/p\u003eThis public domain material is published by 4th Watch Books. We publish tightly-bound, full-size books at 8 1\/2 by 11 inches, with glossy covers. 4th Watch Books is a Service Disabled Veteran Owned Small Business (SDVOSB) and is not affiliated with the National Institute of Standards and Technology. \u003cp\u003e\u003c\/p\u003eFor more titles published by 4th Watch, please visit: \u003cb\u003eusgovpub.com\u003c\/b\u003e \u003cp\u003e\u003c\/p\u003e GSA P-100Facilities Standards for the Public Buildings Service \u003cp\u003e\u003c\/p\u003e GSA P-120 Cost and Schedule Management Policy Requirements \u003cp\u003e\u003c\/p\u003e GSA Standard Level Features and Finishes for U.S. Courts Facilities \u003cp\u003e\u003c\/p\u003eGSA Courtroom Technology Manual \u003cp\u003e\u003c\/p\u003e NIST SP 500-299NIST Cloud Computing Security Reference Architecture \u003cp\u003e\u003c\/p\u003eNIST SP 500-291NIST Cloud Computing Standards Roadmap Version 2 \u003cp\u003e\u003c\/p\u003eNIST SP 500-293US Government Cloud Computing Technology Roadmap Volume 1 \u0026amp; 2 \u003cp\u003e\u003c\/p\u003eNIST SP 500-293US Government Cloud Computing Technology Roadmap Volume 3 DRAFT \u003cp\u003e\u003c\/p\u003eNIST SP 1800-8Securing Wireless Infusion Pumps \u003cp\u003e\u003c\/p\u003eNISTIR 7497Security Architecture Design Process for Health Information Exchanges (HIEs) \u003cp\u003e\u003c\/p\u003eNIST SP 800-66Implementing the Health Insurance Portability and Accountability Act (HIPAA) Security Rule \u003cp\u003e\u003c\/p\u003eNIST SP 1800-1 Securing Electronic Health Records on Mobile Devices \u003cp\u003e\u003c\/p\u003eNIST SP 800-177 Trustworthy Email \u003cp\u003e\u003c\/p\u003eNIST SP 800-184 Guide for Cybersecurity Event Recovery \u003cp\u003e\u003c\/p\u003eNIST SP 800-190 Application Container Security Guide \u003cp\u003e\u003c\/p\u003eNIST SP 800-193 Platform Firmware Resiliency Guidelines \u003cp\u003e\u003c\/p\u003eNIST SP 1800-1 Securing Electronic Health Records on Mobile Devices \u003cp\u003e\u003c\/p\u003eNIST SP 1800-2Identity and Access Management for Electric Utilities \u003cp\u003e\u003c\/p\u003eNIST SP 1800-5IT Asset Management: Financial Services \u003cp\u003e\u003c\/p\u003eNIST SP 1800-6 Domain Name Systems-Based Electronic Mail Security \u003cp\u003e\u003c\/p\u003eNIST SP 1800-7 Situational Awareness for Electric Utilities \u003cp\u003e\u003c\/p\u003e DoD Medical Space Planning Criteria\u003cdiv\u003e\n\u003cstrong\u003eNumber of Pages:\u003c\/strong\u003e 84\u003c\/div\u003e\u003cdiv\u003e\n\u003cstrong\u003eDimensions:\u003c\/strong\u003e 0.17 x 11 x 8.5 IN\u003c\/div\u003e\u003cdiv\u003e\n\u003cstrong\u003ePublication Date:\u003c\/strong\u003e September 30, 2008\u003c\/div\u003e","brand":"Books by splitShops","offers":[{"title":"Default Title","offer_id":51781203099936,"sku":"9781548071707","price":21.8,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0974\/9764\/5344\/files\/21ad8f9a64188c0a9c7f85c54bd54ed6.webp?v=1780544979","url":"https:\/\/ebocreations.com\/products\/nist-sp-800-115-technical-guide-to-information-security-testing-and-assessment-nist-sp-800-115-paperback","provider":"The E-Book Oasis LLC","version":"1.0","type":"link"}