Your browser has JavaScript turned off.
You must turn it on to proceed.










NORS -- CSRIC Best Practices Result

CSRIC Best Practices Result

Detailed Information for the Best Practice: 9-8-8750

Number 9-8-8750
Priority Important
Description Risk Assessments: Service providers and network operators should have assigned risk ratings for vulnerabilities and definitions of those risk ratings (i.e. What does a High risk vulnerability mean to the general user public?, etc.) Finally the security team should have access to an accurate and readily available asset inventory (See Step 1: Asset Inventory) (including the asset owners, and patch levels) and network diagrams.
Network Type(s) Cable; Internet/Data; Wireless; Wireline
Industry Role(s) Service Provider; Network Operator
Keyword(s) Cyber Security;Intrusion Detection;
Reference/Comments Sans Institute, "Vulnerability Management: Tools, Challenges and Best Practices." 2003. Pg. 8 - 10.