The purpose of this publication is to provide guidelines for building effective security assessment plans and a comprehensive set of procedures for assessing the effectiveness of security controls employed in information systems supporting the executive agencies of the federal government.
Download eBookLink updated in 2017 Maybe you will be redirected to source's website