DiscoverBeyondCyberStage 2: Determination of assessment scope and approach
Stage 2: Determination of assessment scope and approach

Stage 2: Determination of assessment scope and approach

Update: 2023-05-14
Share

Description


Stage 2: Determination of assessment scope and approach


Determine assessment scope

In determining the assessment scope, assessors should first clarify the target maturity level with the system owner, noting that the Essential Eight is required to be implemented and assessed as a package. For example, if a system owner has not previously had an assessment demonstrating that they have implemented Maturity Level One, they should not begin an assessment against Maturity Level Two until they have done so, and likewise for Maturity Level Two before being assessed against Maturity Level Three.

Having identified a suitable target maturity level, the assessor should familiarise themselves with the requirements for that maturity level as it will impact the components or aspects of the system within scope of the assessment. At this time it may also be useful to request an approximate percentage breakdown of the operating systems used on workstations and servers for the system.


Support the show

Beyond Cyber 101 mentorship into cybersecurity and beyond.

Comments 
Top Podcasts
The Best New Comedy Podcast Right Now – June 2024The Best News Podcast Right Now – June 2024The Best New Business Podcast Right Now – June 2024The Best New Sports Podcast Right Now – June 2024The Best New True Crime Podcast Right Now – June 2024The Best New Joe Rogan Experience Podcast Right Now – June 20The Best New Dan Bongino Show Podcast Right Now – June 20The Best New Mark Levin Podcast – June 2024
In Channel
A Deep Dive into the World of Privileged Access Management

A Deep Dive into the World of Privileged Access Management

2024-02-0703:39

Navigating the Cyber Battlefield with Strategic Access Management

Navigating the Cyber Battlefield with Strategic Access Management

2024-02-0605:40

Exploring Significant Updates in the Essential 8 Maturity Model

Exploring Significant Updates in the Essential 8 Maturity Model

2023-12-0408:29

Updated Essential Eight Maturity Model November 2023

Updated Essential Eight Maturity Model November 2023

2023-11-3008:05

Secure-by-Design

Secure-by-Design

2023-05-2210:28

Vulnerable by Design

Vulnerable by Design

2023-05-2110:28

FBI cyber strategy

FBI cyber strategy

2023-04-2816:57

eight essential : Evidence quality

eight essential : Evidence quality

2023-05-1801:00

Determining effective implementation of mitigation strategies

Determining effective implementation of mitigation strategies

2023-05-1704:57

E8 Stages of an assessment

E8 Stages of an assessment

2023-05-1600:35

Stage 1: Assessment planning and preparation Assessment planning

Stage 1: Assessment planning and preparation Assessment planning

2023-05-1501:27

Stage 2: Determination of assessment scope and approach

Stage 2: Determination of assessment scope and approach

2023-05-1402:37

Stage 3: Assessment of controls

Stage 3: Assessment of controls

2023-05-1301:01

The Essential Eight Maturity Level One

The Essential Eight Maturity Level One

2023-05-1201:20

Patch applications

Patch applications

2023-05-1103:06

Configure Microsoft Office macro settings

Configure Microsoft Office macro settings

2023-05-1005:52

Restrict administrative privileges

Restrict administrative privileges

2023-05-0903:30

User application hardening

User application hardening

2023-05-0803:23

Patch operating systems

Patch operating systems

2023-05-0706:57

Regular backups

Regular backups

2023-05-0603:56

loading
Google Play
Download from Google Play
Castbox
Download from App Store
usUnited States
00:00
00:00
x

0.5x

0.8x

1.0x

1.25x

1.5x

2.0x

3.0x

Sleep Timer

Off

End of Episode

5 Minutes

10 Minutes

15 Minutes

30 Minutes

45 Minutes

60 Minutes

120 Minutes

Stage 2: Determination of assessment scope and approach

Stage 2: Determination of assessment scope and approach

bruno