Organizations rely heavily on the use of information technology (IT) products and services to run their day-to-day activities. Ensuring the security of these products and services is of the utmost importance for the success of the organization. This publication provides an introduction to the information security principles organizations may leverage in order to understand the information security needs of their respective systems.
Special Publication (NIST SP) - 800-12 Rev. 1
800-12 Rev. 1
assurance, computer security, information security, introduction, risk management, security controls, security requirements