Parsons Software Security Consulting Blog

Questions to ask when doing a security review

leave a comment »

  1. Where is the application? Where does it reside?
    1. Is the application internal?
    2. Is the application located on the DMZ?
    3. Is the application Internet facing?
    4. What information do we need to protect?   What are the labels for the security?   Public, Internal, Private, Classified, Secret, Top Secret
    5. Is there any Personal Identifiable Information that we need to protect?
    6. Are there any credit card numbers, social security numbers

Written by mparsons1980

November 22, 2010 at 10:34 am

Posted in Uncategorized

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

<span>%d</span> bloggers like this: