Vulnerability |
Distribution Report |
6 |
Vulnerability |
Area: Evaluation |
|
45.Reproduction facilities and copy machines are secured or locked to prevent abuse?
Vulnerability Area: Accountability
46. A quantitative risk analysis required by current directives has been performed within the past three years?
Vulnerability Area: Evaluation
47.There is documentation that demonstrates that all network systems are approved by management?
Vulnerability Area: Policy
Vulnerability Distribution Report |
7 |
48. The Program Security Officer has prescribed the security measures to be used at each workstation and work area?
Vulnerability Area: Policy
49. The facility has been audited for security within the last twelve months?
Vulnerability Area: Evaluation
50. Management strives to reduce employee turnover by retaining qualified personnel through fair promotion policies?
Vulnerability Area: Policy
The areas of vulnerability associated with the questions above are shown below, ranked according to the number of questions in each.
Following the table is a chart indicating the relative importance of each area of vulnerability, as determined from the question set.
Vulnerability Areas Number of Questions
1. |
Access Control |
13 |
2. |
Policy |
13 |
3. |
Reliability |
8 |
4. |
Accountability |
5 |
5. |
Evaluation |
3 |
6. |
Administration |
2 |
7. |
Data Integrity |
2 |
8. |
Disclosure |
2 |
9. |
Privacy Act |
1 |
10. |
Documentation |
1 |
5 Others (16.0%)
Access Control (26.0%)
Evaluation (6.0%)
Account ability (10.0%)
Policy (26.0%) |
Reliability (16.0%) |
|