Security and Risk management in SDLC Software development Life cycle

•

2 j'aime•4,934 vues

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Security,Software development life cycle, SDLC, Risk Management,NIST,TOGAF,PMI,COBIT


 Initiation: Security User Stories Identified
 Planning: Incorporate Risk identified in System
Architecture and Design.
 Implementation: Assess Identified Risk on
Implementation.
 Monitoring & Control: Changes, CR (Change request
must be reauthorized.
 Closing: Dispose off unwanted software, hardware &
information Components.
Security Risk Management in
SDLC

Step 1. System Characterization
Step 2. Threat Identification
Step 3. Vulnerability Identification
Step 4. Control Analysis
Step 5. Likelihood Determination
Step 6. Impact Analysis
Step 7. Risk Determination
Step 8. Control Recommendations
Step 9. Result determination.


Risk Management Steps Defined under
PMI
Risk Management Process Groups : Input – process –
Output
- Outputs: (Risk Register, Risk Management plan, Risk
Response, Communication Management plan,
Quantitative and Qualitative Risk Assessment and
Mitigation)
This is Almost similar To NIST methodology discussed
above.
PMI groups deals with Project management in general.
Whereas in NIST RM steps are Generic and platform
independent to work across multiple methodology.


 This is Evolving presentation: Will add more details
Refer Blog/presentation Read by almost 50,000
people. More details and write up can be found at:
 http://www.productmanagementview.wordpress.com
 http://projectmanagerview.wordpress.com
 http://sandyclassic.wordpress.com
More Details

Contenu connexe

Tendances

NIST SP 800 30 Flow Chart

NIST SP 800 30 Flow Chart

NIST SP 800 30 Flow Chart

James W. De Rienzo

Security testing

Security testing

Security testing

Precise Testing Solution

Understanding the Risk Management Framework & (ISC)2 CAP Module 9: Assess Con...

Understanding the Risk Management Framework & (ISC)2 CAP Module 9: Assess Con...

Understanding the Risk Management Framework & (ISC)2 CAP Module 9: Assess Con...

Donald E. Hester

This presentation on Continuous Monitoring was created by Bryce Schroeder, who leads Tripwire's global presales engineering team at Tripwire. He has over 29 years of IT architectural and security expertise solving Enterprise challenges. Bryce joined Tripwire from NetApp where he led a team of Architects and Systems Engineering in enterprise Cloud infrastructure solutions. Numerous articles on Continuous Monitoring can be found here: http://www.tripwire.com/state-of-security/tag/continuous-diagnostics-and-mitigation/

Continuous Monitoring: Getting Past Complexity & Reducing Risk

Continuous Monitoring: Getting Past Complexity & Reducing Risk

Continuous Monitoring: Getting Past Complexity & Reducing Risk

Understanding the Risk Management Framework & (ISC)2 CAP Module 6: Categorize

Understanding the Risk Management Framework & (ISC)2 CAP Module 6: Categorize

Understanding the Risk Management Framework & (ISC)2 CAP Module 6: Categorize

Donald E. Hester

This presentation provides: An overview of continuous monitoring Discusses federal requirements for continuing monitoring Explains why it is critical for risk mitigation Describes an effective continuous monitoring strategy that brings together data from different security controls in one place Watch the webcast here: http://www.tripwire.com/register/achieving-continuous-monitoring-easily-with-security-automation/

Achieving Continuous Monitoring with Security Automation

Achieving Continuous Monitoring with Security Automation

Achieving Continuous Monitoring with Security Automation

Understanding the Risk Management Framework & (ISC)2 CAP Module 1: Exam

Understanding the Risk Management Framework & (ISC)2 CAP Module 1: Exam

Understanding the Risk Management Framework & (ISC)2 CAP Module 1: Exam

Donald E. Hester

BSidesQuebec2013_fred

BSidesQuebec2013_fred

BSidesQuebec2013_fred

BSidesQuebec2013

Security assessment

Security assessment

Security assessment

Antonio Bristow

Understanding the Risk Management Framework & (ISC)2 CAP Module 10: Authorize

Understanding the Risk Management Framework & (ISC)2 CAP Module 10: Authorize

Understanding the Risk Management Framework & (ISC)2 CAP Module 10: Authorize

Donald E. Hester

Information Security Continuous Monitoring within a Risk Management Framework

Information Security Continuous Monitoring within a Risk Management Framework

Information Security Continuous Monitoring within a Risk Management Framework

William McBorrough

How to Build Your Risk Management Plan – an Effective Checklist

How to Build Your Risk Management Plan – an Effective Checklist

How to Build Your Risk Management Plan – an Effective Checklist

Tipsographic . com

FISMA NextGen - Continuous Monitoring, Near Real-Time Risk Management

FISMA NextGen - Continuous Monitoring, Near Real-Time Risk Management

FISMA NextGen - Continuous Monitoring, Near Real-Time Risk Management

Understanding the Risk Management Framework & (ISC)2 CAP Module 4: Life Cycle

Understanding the Risk Management Framework & (ISC)2 CAP Module 4: Life Cycle

Understanding the Risk Management Framework & (ISC)2 CAP Module 4: Life Cycle

Donald E. Hester

IT Auditing – Using Controls to Protect Information Assets (straight to the point) Under the skillful guidance of ALTUM’s best instructors, participants will learn how to plan and perform complex technical audits. Over a three to six month period, a General Controls Review, Network Audit, several Operating System Audits and a review of the Internet should be able to be completed. Participants will also learn how to effectively report issues to management, while providing the IT administrators and technicians with a working document allowing them to correct existing security issues. This is a 3-day hands-on training and all participants are advised to come along with their laptops.

Practical IT auditing

Practical IT auditing

Practical IT auditing

Frederick Altum Pokoo-Aikins

At the direction of OMB and NIST, security and IT pros in federal government must develop plans to implement "continuous monitoring," the practice of using IT security controls to constantly monitor and manage the security status of their information systems and networks. The transition from static security to continuous monitoring requires a new approach to IT security, and IT teams must devise a strategy and roadmap to be successful. In this editorial Webcast, cybersecurity experts will help discuss the tools and processes involved in moving from a traditional security environment to one designed around continuous monitoring. This Webcast will help government IT pros: Understand the objectives of continuous monitoring, such as reduced threat exposure through real time risk assessment and response. Identify the steps involved, including determining the security impact of changes to IT systems and producing assessment reports. Assess system requirements in areas such as malware detection and event and incident management. Determine the need for upgrades and investment in new technologies.

Developing a Continuous Monitoring Action Plan

Developing a Continuous Monitoring Action Plan

Developing a Continuous Monitoring Action Plan

TrustedAgent GRC for Vulnerability Management and Continuous Monitoring

TrustedAgent GRC for Vulnerability Management and Continuous Monitoring

TrustedAgent GRC for Vulnerability Management and Continuous Monitoring

Understanding the Risk Management Framework & (ISC)2 CAP Module 2: Introduction

Understanding the Risk Management Framework & (ISC)2 CAP Module 2: Introduction

Understanding the Risk Management Framework & (ISC)2 CAP Module 2: Introduction

Donald E. Hester

The complexities of NERC CIP-007-5 Requirement 1 (R1) make this one of the most violated requirements in all the NERC standards. NERC CIP-007-5 is the standard focused on Systems Security Management. R1 is intended to minimize the attack surface of critical systems by disabling or limiting access to unnecessary network accessible logical ports and services. For most electric utilities, meeting the mandatory controls of this requirement is an incredibly tedious and labor-intensive effort. Tripwire has a unique whitelisting profiler extension that can automate monitoring ports, services, user accounts, software, and other requirements within NERC CIP-007-05-R1. Join Robert Held, Senior Systems Engineer, as he live-demos how customer sites are saving man-years of effort in preparing and automating for their audits. Also joining to share their customer experience will be Marc Child, CISSP , Information Security Program Manager at Great River Energy. Key Takeaways: -Understand what CIP-007-5-R1 means to your organization -Learn how to automate the processes required for assessing High and Medium Impact Cyber Assets -Get audit-ready “Evidence of Compliance” reporting to provide auditors with what they need -Hear how Marc Child at Great River Energy uses the whitelisting profiler for security and compliance

Automating for NERC CIP-007-5-R1

Automating for NERC CIP-007-5-R1

Automating for NERC CIP-007-5-R1

RMF Roles and Responsibilities (Part 1)

RMF Roles and Responsibilities (Part 1)

RMF Roles and Responsibilities (Part 1)

Donald E. Hester

Tendances (20)

NIST SP 800 30 Flow Chart

NIST SP 800 30 Flow Chart

NIST SP 800 30 Flow Chart

Security testing

Security testing

Security testing

Understanding the Risk Management Framework & (ISC)2 CAP Module 9: Assess Con...

Understanding the Risk Management Framework & (ISC)2 CAP Module 9: Assess Con...

Understanding the Risk Management Framework & (ISC)2 CAP Module 9: Assess Con...

Continuous Monitoring: Getting Past Complexity & Reducing Risk

Continuous Monitoring: Getting Past Complexity & Reducing Risk

Continuous Monitoring: Getting Past Complexity & Reducing Risk

Understanding the Risk Management Framework & (ISC)2 CAP Module 6: Categorize

Understanding the Risk Management Framework & (ISC)2 CAP Module 6: Categorize

Understanding the Risk Management Framework & (ISC)2 CAP Module 6: Categorize

Achieving Continuous Monitoring with Security Automation

Achieving Continuous Monitoring with Security Automation

Achieving Continuous Monitoring with Security Automation

Understanding the Risk Management Framework & (ISC)2 CAP Module 1: Exam

Understanding the Risk Management Framework & (ISC)2 CAP Module 1: Exam

Understanding the Risk Management Framework & (ISC)2 CAP Module 1: Exam

BSidesQuebec2013_fred

BSidesQuebec2013_fred

BSidesQuebec2013_fred

Security assessment

Security assessment

Security assessment

Understanding the Risk Management Framework & (ISC)2 CAP Module 10: Authorize

Understanding the Risk Management Framework & (ISC)2 CAP Module 10: Authorize

Understanding the Risk Management Framework & (ISC)2 CAP Module 10: Authorize

Information Security Continuous Monitoring within a Risk Management Framework

Information Security Continuous Monitoring within a Risk Management Framework

Information Security Continuous Monitoring within a Risk Management Framework

How to Build Your Risk Management Plan – an Effective Checklist

How to Build Your Risk Management Plan – an Effective Checklist

How to Build Your Risk Management Plan – an Effective Checklist

FISMA NextGen - Continuous Monitoring, Near Real-Time Risk Management

FISMA NextGen - Continuous Monitoring, Near Real-Time Risk Management

FISMA NextGen - Continuous Monitoring, Near Real-Time Risk Management

Understanding the Risk Management Framework & (ISC)2 CAP Module 4: Life Cycle

Understanding the Risk Management Framework & (ISC)2 CAP Module 4: Life Cycle

Understanding the Risk Management Framework & (ISC)2 CAP Module 4: Life Cycle

Practical IT auditing

Practical IT auditing

Practical IT auditing

Developing a Continuous Monitoring Action Plan

Developing a Continuous Monitoring Action Plan

Developing a Continuous Monitoring Action Plan

TrustedAgent GRC for Vulnerability Management and Continuous Monitoring

TrustedAgent GRC for Vulnerability Management and Continuous Monitoring

TrustedAgent GRC for Vulnerability Management and Continuous Monitoring

Understanding the Risk Management Framework & (ISC)2 CAP Module 2: Introduction

Understanding the Risk Management Framework & (ISC)2 CAP Module 2: Introduction

Understanding the Risk Management Framework & (ISC)2 CAP Module 2: Introduction

Automating for NERC CIP-007-5-R1

Automating for NERC CIP-007-5-R1

Automating for NERC CIP-007-5-R1

RMF Roles and Responsibilities (Part 1)

RMF Roles and Responsibilities (Part 1)

RMF Roles and Responsibilities (Part 1)

Similaire à Security and Risk management in SDLC Software development Life cycle

Many companies and agencies conduct IT audits to test and assess the rigor of IT security controls in order to mitigate risks to IT networks. Such audits meet compliance mandates by regulatory organizations. Federal IT systems follow Federal Information System Management Act (FISMA) guidelines and report security compliance to US-CERT, the United States Computer Emergency Readiness Team, which handles defense and response to cyberattacks as part of the Department of Homeland Security. In addition, the Control Objective for Information Technology (COBIT) is a set of IT security guidelines that provides a framework for IT security for IT systems in the commercial sector. These audits are comprehensive and rigorous, and negative findings can lead to significant fines and other penalties. Therefore, industry and federal entities conduct internal self-audits in preparation for actual external IT audits, and compile security assessment reports. In this project, you will develop a 12-page written security assessment report and executive briefing (slide presentation) for a company and submit the report to the leadership of that company. There are six steps to complete the project. Most steps in this project should take no more than two hours to complete, and the project as a whole should take no more than three weeks to complete. Begin with the workplace scenario, and then continue to Step 1. Step 1: Conduct a Security Analysis Baseline In the first step of the project, you will conduct a security analysis baseline of the IT systems, which will include a data-flow diagram of connections and endpoints, and all types of access points, including wireless. The baseline report will be part of the overall security assessment report (SAR). You will get your information from a data-flow diagram and report from the Microsoft Threat Modeling Tool 2016. The scope should include network IT security for the whole organization. Click the following to view the data-flow diagram: [diagram and report] Include the following areas in this portion of the SAR: Security requirements and goals for the preliminary security baseline activity. Typical attacks to enterprise networks and their descriptions. Include Trojans, viruses, worms, denial of service, session hijacking, and social engineering. Include the impacts these attacks have on an organization. Network infrastructure and diagram, including configuration and connections. Describe the security posture with respect to these components and the security employed: LAN, MAN, WAN, enterprise. Use these questions to guide you: What are the security risks and concerns? What are ways to get real-time understanding of the security posture at any time? How regularly should the security of the enterprise network be tested, and what type of tests should be used? What are the processes in play, or to be established to respond to an incident? Workforce skill is a critical success factor in any.

Many companies and agencies conduct IT audits to test and assess the.docx

Many companies and agencies conduct IT audits to test and assess the.docx

Many companies and agencies conduct IT audits to test and assess the.docx

Designing NextGen Threat Identification Solutions

Designing NextGen Threat Identification Solutions

Designing NextGen Threat Identification Solutions

Software Engineering

Software Engineering

Software Engineering

Defense In Depth Using NIST 800-30

Defense In Depth Using NIST 800-30

Defense In Depth Using NIST 800-30

Kevin M. Moker, CFE, CISSP, ISSMP, CISM

Management spectrum – people, product, process ,project; Metrics-Measures; Metrics and indicators; Types of metrics-Size oriented, Function-Oriented metrics, Metrics for software quality; Resources-human, hardware ,software resources; Software project estimation-Decomposition technique, LOC based estimation, Empirical estimation; COCOMO model; Risk management: Risk identification, Risk analysis, Risk projection, Risk assessment, Risk prioritization, Risk resolution, Risk monitoring and control; Project scheduling - Work tasks, Time line charts and CPM; Software quality assurance; Quality; Formal technical review and software reliability

Software Engineering

Software Engineering

Software Engineering

Dr. Anthony Vincent. B

Link to Youtube video: https://youtu.be/OJMqMWnxlT8 You can contact me at abhimanyu.bhogwan@gmail.com My linkdin id : https://www.linkedin.com/in/abhimanyu-bhogwan-cissp-ctprp-98978437/ Threat Modeling(system+ enterprise) What is Threat Modeling? Why do we need Threat Modeling? 6 Most Common Threat Modeling Misconceptions Threat Modelling Overview 6 important components of a DevSecOps approach DevSecOps Security Best Practices Threat Modeling Approaches Threat Modeling Methodologies for IT Purposes STRIDE Threat Modelling Detailed Flow System Characterization Create an Architecture Overview Decomposing your Application Decomposing DFD’s and Threat-Element Relationship Identify possible attack scenarios mapped to S.T.R.I.D.E. model Identifying Security Controls Identify possible threats Report to Developers and Security team DREAD Scoring My Opinion on implementing Threat Modeling at enterprise level

Threat modelling(system + enterprise)

Threat modelling(system + enterprise)

Threat modelling(system + enterprise)

abhimanyubhogwan

Object oriented analysis and design unit- i

Object oriented analysis and design unit- i

Object oriented analysis and design unit- i

Shri Shankaracharya College, Bhilai,Junwani

Sdlc

Waheed Iqbal Boss

FOR MORE CLASSES VISIT www.cst630rank.com Project 1 Step 1: Conduct a Security Analysis Baseline In the first step of the project, you will conduct a security analysis baseline of the IT systems, which will include a data-flow diagram of connections and endpoints, and all types of access points, including wireless. The baseline report will be part of the overall security assessment report (SAR). You will get your information from a data-flow diagram and report from the Microsoft Threat Modeling

CST 630 RANK Remember Education--cst630rank.com

CST 630 RANK Remember Education--cst630rank.com

CST 630 RANK Remember Education--cst630rank.com

Process Maturity Assessment

Process Maturity Assessment

Process Maturity Assessment

This presentation covers the essential components of a successful Vulnerability Management program that allows you proactively identify risk to protect your network and critical business assets. Key take-aways: * Integrating the 3 critical factors - people, processes & technology * Saving time and money via automated tools * Anticipating and overcoming common Vulnerability Management roadblocks * Meeting security regulations and compliance requirements with Vulnerability Management

Planning and Deploying an Effective Vulnerability Management Program

Planning and Deploying an Effective Vulnerability Management Program

Planning and Deploying an Effective Vulnerability Management Program

FOR MORE CLASSES VISIT www.cst630rank.com Project 1 Step 1: Conduct a Security Analysis Baseline In the first step of the project, you will conduct a security analysis baseline of the IT systems, which will include a data-flow diagram of connections and endpoints, and all types of access points, including wireless. The baseline report will be part of the overall security assessment report (SAR). You

CST 630 RANK Redefined Education--cst630rank.com

CST 630 RANK Redefined Education--cst630rank.com

CST 630 RANK Redefined Education--cst630rank.com

CST 630 RANK Achievement Education--cst630rank.com

CST 630 RANK Achievement Education--cst630rank.com

CST 630 RANK Achievement Education--cst630rank.com

ByteCode pentest report example

ByteCode pentest report example

ByteCode pentest report example

OOSE-PRESENTATION.pptx

OOSE-PRESENTATION.pptx

OOSE-PRESENTATION.pptx

Risk Based Security and Self Protection Powerpoint

Risk Based Security and Self Protection Powerpoint

Risk Based Security and Self Protection Powerpoint

CST 630 RANK Introduction Education--cst630rank.com

CST 630 RANK Introduction Education--cst630rank.com

CST 630 RANK Introduction Education--cst630rank.com

agathachristie266

FOR MORE CLASSES VISIT www.cst630rank.com Project 1 Step 1: Conduct a Security Analysis Baseline In the first step of the project, you will conduct a security analysis baseline of the IT systems, which will include a data-flow diagram of connections and endpoints, and all types of access points, including wireless. The baseline report will be part of the overall security assessment report (SAR). You will get your information

CST 630 RANK Educational Specialist--cst630rank.com

CST 630 RANK Educational Specialist--cst630rank.com

CST 630 RANK Educational Specialist--cst630rank.com

CST 630 RANK Inspiring Innovation--cst630rank.com

CST 630 RANK Inspiring Innovation--cst630rank.com

CST 630 RANK Inspiring Innovation--cst630rank.com

KeatonJennings104

CST 630 RANK Become Exceptional--cst630rank.com

CST 630 RANK Become Exceptional--cst630rank.com

CST 630 RANK Become Exceptional--cst630rank.com

agathachristie113

Similaire à Security and Risk management in SDLC Software development Life cycle (20)

Many companies and agencies conduct IT audits to test and assess the.docx

Many companies and agencies conduct IT audits to test and assess the.docx

Many companies and agencies conduct IT audits to test and assess the.docx

Designing NextGen Threat Identification Solutions

Designing NextGen Threat Identification Solutions

Designing NextGen Threat Identification Solutions

Software Engineering

Software Engineering

Software Engineering

Defense In Depth Using NIST 800-30

Defense In Depth Using NIST 800-30

Defense In Depth Using NIST 800-30

Software Engineering

Software Engineering

Software Engineering

Threat modelling(system + enterprise)

Threat modelling(system + enterprise)

Threat modelling(system + enterprise)

Object oriented analysis and design unit- i

Object oriented analysis and design unit- i

Object oriented analysis and design unit- i

Sdlc

CST 630 RANK Remember Education--cst630rank.com

CST 630 RANK Remember Education--cst630rank.com

CST 630 RANK Remember Education--cst630rank.com

Process Maturity Assessment

Process Maturity Assessment

Process Maturity Assessment

Planning and Deploying an Effective Vulnerability Management Program

Planning and Deploying an Effective Vulnerability Management Program

Planning and Deploying an Effective Vulnerability Management Program

CST 630 RANK Redefined Education--cst630rank.com

CST 630 RANK Redefined Education--cst630rank.com

CST 630 RANK Redefined Education--cst630rank.com

CST 630 RANK Achievement Education--cst630rank.com

CST 630 RANK Achievement Education--cst630rank.com

CST 630 RANK Achievement Education--cst630rank.com

ByteCode pentest report example

ByteCode pentest report example

ByteCode pentest report example

OOSE-PRESENTATION.pptx

OOSE-PRESENTATION.pptx

OOSE-PRESENTATION.pptx

Risk Based Security and Self Protection Powerpoint

Risk Based Security and Self Protection Powerpoint

Risk Based Security and Self Protection Powerpoint

CST 630 RANK Introduction Education--cst630rank.com

CST 630 RANK Introduction Education--cst630rank.com

CST 630 RANK Introduction Education--cst630rank.com

CST 630 RANK Educational Specialist--cst630rank.com

CST 630 RANK Educational Specialist--cst630rank.com

CST 630 RANK Educational Specialist--cst630rank.com

CST 630 RANK Inspiring Innovation--cst630rank.com

CST 630 RANK Inspiring Innovation--cst630rank.com

CST 630 RANK Inspiring Innovation--cst630rank.com

CST 630 RANK Become Exceptional--cst630rank.com

CST 630 RANK Become Exceptional--cst630rank.com

CST 630 RANK Become Exceptional--cst630rank.com

Plus de Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Management Consultancy Saudi Telecom Digital Transformation Design Thinking

Management Consultancy Saudi Telecom Digital Transformation Design Thinking

Management Consultancy Saudi Telecom Digital Transformation Design Thinking

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Major new initiatives

Major new initiatives

Major new initiatives

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Digital transformation journey Consulting

Digital transformation journey Consulting

Digital transformation journey Consulting

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Agile Jira Reporting

Agile Jira Reporting

Agile Jira Reporting

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Lnt and bbby Retail Houseare industry Case assignment sandeep sharma

Lnt and bbby Retail Houseare industry Case assignment sandeep sharma

Lnt and bbby Retail Houseare industry Case assignment sandeep sharma

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Risk management Consulting For Municipality

Risk management Consulting For Municipality

Risk management Consulting For Municipality

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

GDPR And Privacy By design Consultancy

GDPR And Privacy By design Consultancy

GDPR And Privacy By design Consultancy

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Real implementation Blockchain Best Use Cases Examples

Real implementation Blockchain Best Use Cases Examples

Real implementation Blockchain Best Use Cases Examples

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Ffd 05 2012

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Biztalk architecture for Configured SMS service

Biztalk architecture for Configured SMS service

Biztalk architecture for Configured SMS service

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Data modelling interview question

Data modelling interview question

Data modelling interview question

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Pmo best practices

Pmo best practices

Pmo best practices

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Agile project management

Agile project management

Agile project management

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Enroll hostel Business Model

Enroll hostel Business Model

Enroll hostel Business Model

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Cloud manager client provisioning guideline draft 1.0

Cloud manager client provisioning guideline draft 1.0

Cloud manager client provisioning guideline draft 1.0

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Bpm digital transformation

Bpm digital transformation

Bpm digital transformation

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Digital transformation explained

Digital transformation explained

Digital transformation explained

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Government Digital transformation trend draft 1.0

Government Digital transformation trend draft 1.0

Government Digital transformation trend draft 1.0

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Enterprise architecture maturity rating draft 1.0

Enterprise architecture maturity rating draft 1.0

Enterprise architecture maturity rating draft 1.0

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Organisation Structure For digital Transformation Team

Organisation Structure For digital Transformation Team

Organisation Structure For digital Transformation Team

Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

Plus de Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW (20)

Management Consultancy Saudi Telecom Digital Transformation Design Thinking

Management Consultancy Saudi Telecom Digital Transformation Design Thinking

Management Consultancy Saudi Telecom Digital Transformation Design Thinking

Major new initiatives

Major new initiatives

Major new initiatives

Digital transformation journey Consulting

Digital transformation journey Consulting

Digital transformation journey Consulting

Agile Jira Reporting

Agile Jira Reporting

Agile Jira Reporting

Lnt and bbby Retail Houseare industry Case assignment sandeep sharma

Lnt and bbby Retail Houseare industry Case assignment sandeep sharma

Lnt and bbby Retail Houseare industry Case assignment sandeep sharma

Risk management Consulting For Municipality

Risk management Consulting For Municipality

Risk management Consulting For Municipality

GDPR And Privacy By design Consultancy

GDPR And Privacy By design Consultancy

GDPR And Privacy By design Consultancy

Real implementation Blockchain Best Use Cases Examples

Real implementation Blockchain Best Use Cases Examples

Real implementation Blockchain Best Use Cases Examples

Ffd 05 2012

Biztalk architecture for Configured SMS service

Biztalk architecture for Configured SMS service

Biztalk architecture for Configured SMS service

Data modelling interview question

Data modelling interview question

Data modelling interview question

Pmo best practices

Pmo best practices

Pmo best practices

Agile project management

Agile project management

Agile project management

Enroll hostel Business Model

Enroll hostel Business Model

Enroll hostel Business Model

Cloud manager client provisioning guideline draft 1.0

Cloud manager client provisioning guideline draft 1.0

Cloud manager client provisioning guideline draft 1.0

Bpm digital transformation

Bpm digital transformation

Bpm digital transformation

Digital transformation explained

Digital transformation explained

Digital transformation explained

Government Digital transformation trend draft 1.0

Government Digital transformation trend draft 1.0

Government Digital transformation trend draft 1.0

Enterprise architecture maturity rating draft 1.0

Enterprise architecture maturity rating draft 1.0

Enterprise architecture maturity rating draft 1.0

Organisation Structure For digital Transformation Team

Organisation Structure For digital Transformation Team

Organisation Structure For digital Transformation Team

Dernier

%in Bahrain+277-882-255-28 abortion pills for sale in Bahrain

%in Bahrain+277-882-255-28 abortion pills for sale in Bahrain

%in Bahrain+277-882-255-28 abortion pills for sale in Bahrain

Abortion Pills In Pretoria ](+27832195400*)[ 🏥 Women's Abortion Clinic In Pretoria ● Abortion Pills For Sale In Pretoria ● Pretoria 🏥🚑!! Abortion Clinic Near Me Cost, Price, Women's Clinic Near Me, Abortion Clinic Near, Abortion Doctors Near me, Abortion Services Near Me, Abortion Pills Over The Counter, Abortion Pill Doctors' Offices, Abortion Clinics, Abortion Places Near Me, Cheap Abortion Places Near Me, Medical Abortion & Surgical Abortion, approved cyctotec pills and womb cleaning pills too plus all the instructions needed This Discrete women’s Termination Clinic offers same day services that are safe and pain free, we use approved pills and we clean the womb so that no side effects are present. Our main goal is that of preventing unintended pregnancies and unwanted births every day to enable more women to have children by choice, not chance. We offer Terminations by Pill and The Morning After Pill.” Our Private VIP Abortion Service offers the ultimate in privacy, efficiency and discretion. we do safe and same day termination and we do also womb cleaning as well its done from 1 week up to 28 weeks. We do delivery of our services world wide SAFE ABORTION CLINICS/PILLS ON SALE WE DO DELIVERY OF PILLS ALSO Abortion clinic at very low costs, 100% Guaranteed and it’s safe, pain free and a same day service. It Is A 45 Minutes Procedure, we use tested abortion pills and we do womb cleaning as well. Alternatively the medical abortion pill and womb cleansing !!!

Abortion Pills In Pretoria ](+27832195400*)[ 🏥 Women's Abortion Clinic In Pre...

Abortion Pills In Pretoria ](+27832195400*)[ 🏥 Women's Abortion Clinic In Pre...

Abortion Pills In Pretoria ](+27832195400*)[ 🏥 Women's Abortion Clinic In Pre...

Medical / Health Care (+971588192166) Mifepristone and Misoprostol tablets 200mg

We specialize in Psychic Readings, Psychic Love Spells, Binding Love Spells, Obsession Spells, Voodoo Spells, Lottery Spells, Marriage Spells, Black Magic Spells, Palm Readings & much more. Are you depressed? We perform this come-to-me love spell that works instantly with the aim of Winnipeg back the victim to the person performing the magic. Have you lost your lover? We perform this come-to-me love spell that works instantly with the aim of bringing back the victim to the person performing the magic. Have you lost your lover? Do u need to solve any relationship problem? Contact the powerful spells caster chief kule with love spells that work overnight and love spells that really work. Have you found yourself infatuated with a special someone you think could be the one? Are you looking for a spell to provide them with a nudge in the right direction? Or maybe the spell you cast didn’t achieve the results you were hoping for? Whether you’re new or versed in the ways of spell casting, we’re here to help. Today we’re going to provide you with a detailed guide on the types of love spells to cast. Not only that but there’s something for those who wish to find outside advice from more advanced spell casters. We’re also going to provide you with the top sites available to help you with your dilemma. Let’s begin our journey by educating ourselves on love magic and what a real love caster looks like. Love Magic and Love Casters Love magic made its first appearance back in Ancient Egypt and has been an active practice since. This type of magic is a branch of traditional magic and can be practiced in various ways. Typically the more common use of love magic is through the work of spells, but other methods look like Charms Rituals-LOVE Potions-Dolls and even Amulets If you are interested in becoming a love caster, be prepared for what’s to come. A genuine love caster knows that the art of love casting is no easy feat and shouldn’t be done casually. You should know that not only does it require you to be gifted spiritually, but you must be ready to serve others. Someone who is considered a real love caster has experience in all manner of spells, no matter the difficulty. Training yourself in attraction, commitment, and marriage spells is an excellent place to start. But this by no means will make you a professional. Practice your craft and expand your knowledge; understand that you will possess the ability to help others in time truly. Types of Love Spells What better way to start broadening your experiences with love spells than by learning more about them? These spells work like just about any other spell. Simply apply your intention, use a medium (sigils, mantras, candles, or charm bags), and top it off with establishing the belief that you will receive what you want. So what kind of spells are available and which ones suit your needs the best? Let’s take a look at the many options you have at your disposal. Attraction Spells

%+27788225528 love spells in Knoxville Psychic Readings, Attraction spells,Br...

%+27788225528 love spells in Knoxville Psychic Readings, Attraction spells,Br...

%+27788225528 love spells in Knoxville Psychic Readings, Attraction spells,Br...

WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...

WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...

WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...

We specialize in Psychic Readings, Psychic Love Spells, Binding Love Spells, Obsession Spells, Voodoo Spells, Lottery Spells, Marriage Spells, Black Magic Spells, Palm Readings & much more. Are you depressed? We perform this come-to-me love spell that works instantly with the aim of bringing back the victim to the person performing the magic. Have you lost your lover? We perform this come-to-me love spell that works instantly with the aim of bringing back the victim to the person performing the magic. Have you lost your lover? Do u need to solve any relationship problem? Contact the powerful spells caster chief kule with love spells that work overnight and love spells that really work. Have you found yourself infatuated with a special someone you think could be the one? Are you looking for a spell to provide them with a nudge in the right direction? Or maybe the spell you cast didn’t achieve the results you were hoping for? Whether you’re new or versed in the ways of spell casting, we’re here to help. Today we’re going to provide you with a detailed guide on the types of love spells to cast. Not only that but there’s something for those who wish to find outside advice from more advanced spell casters. We’re also going to provide you with the top sites available to help you with your dilemma. Let’s begin our journey by educating ourselves on love magic and what a real love caster looks like. Love Magic and Love Casters Love magic made its first appearance back in Ancient Egypt and has been an active practice since. This type of magic is a branch of traditional magic and can be practiced in various ways. Typically the more common use of love magic is through the work of spells, but other methods look like Charms Rituals-LOVE Potions-Dolls and even Amulets If you are interested in becoming a love caster, be prepared for what’s to come. A genuine love caster knows that the art of love casting is no easy feat and shouldn’t be done casually. You should know that not only does it require you to be gifted spiritually, but you must be ready to serve others. Someone who is considered a real love caster has experience in all manner of spells, no matter the difficulty. Training yourself in attraction, commitment, and marriage spells is an excellent place to start. But this by no means will make you a professional. Practice your craft and expand your knowledge; understand that you will possess the ability to help others in time truly. Types of Love Spells What better way to start broadening your experiences with love spells than by learning more about them? These spells work like just about any other spell. Simply apply your intention, use a medium (sigils, mantras, candles, or charm bags), and top it off with establishing the belief that you will receive what you want. So what kind of spells are available and which ones suit your needs the best? Let’s take a look at the many options you have at your disposal.

%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...

%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...

%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...

%in Soweto+277-882-255-28 abortion pills for sale in soweto

%in Soweto+277-882-255-28 abortion pills for sale in soweto

%in Soweto+277-882-255-28 abortion pills for sale in soweto

WSO2CON 2024 - WSO2's Digital Transformation Journey with Choreo: A Platforml...

WSO2CON 2024 - WSO2's Digital Transformation Journey with Choreo: A Platforml...

WSO2CON 2024 - WSO2's Digital Transformation Journey with Choreo: A Platforml...

VTU technical seminar 8Th Sem on Scikit-learn

VTU technical seminar 8Th Sem on Scikit-learn

VTU technical seminar 8Th Sem on Scikit-learn

AmarnathKambale

ADR, or Architecture Decision Record, is a valuable tool in software development for several reasons. It provides a centralized location for documenting and tracking architectural decisions, aiding both current and future team members. ADRs enhance communication among team members by documenting the rationale behind architectural decisions, especially beneficial during onboarding of new team members or when revisiting decisions. They serve as a knowledge base, enabling teams to learn from past decisions and refine their decision-making process. Additionally, ADRs contribute to transparency by helping stakeholders understand the reasons behind specific architectural choices. As with any other tool or process, introducing them into an organization can face several obstacles, and overcoming these challenges is crucial for successful implementation. In this talk I go through some common problems and our way of solving them.

Architecture decision records - How not to get lost in the past

Architecture decision records - How not to get lost in the past

Architecture decision records - How not to get lost in the past

Papp Krisztián

Craft an AI & Machine Learning Pitch with our Editable Professional PowerPoint Template. Ignite your AI & Machine Learning pitch with our cutting-edge PowerPoint template tailored for the industry. Perfect for AI conferences, investor presentations, sales pitches to tech-focused companies, training sessions, and educational programs. - 20+ editable slides: Get a variety of options to choose from for your presentation. - Time-saving solution: Download, replace text/images with a few clicks. - User-friendly customization: Easy to use and personalize. - Modern and attractive design: Captivating visuals, sleek layout. - Tailored to your requirements: Fully alterable for customization. - Well-organized slides: Complete control over content. - Thematic specificity: Reflects healthcare industry with relevant graphics. - Showcase your business idea: Communicate value proposition effectively.

AI & Machine Learning Presentation Template

AI & Machine Learning Presentation Template

AI & Machine Learning Presentation Template

Presentation.STUDIO

Crypto Cloud Review - How To Earn Up To $500 Per DAY Of Bitcoin 100% On AutoP...

Crypto Cloud Review - How To Earn Up To $500 Per DAY Of Bitcoin 100% On AutoP...

Crypto Cloud Review - How To Earn Up To $500 Per DAY Of Bitcoin 100% On AutoP...

WSO2CON 2024 - Cloud Native Middleware: Domain-Driven Design, Cell-Based Arch...

WSO2CON 2024 - Cloud Native Middleware: Domain-Driven Design, Cell-Based Arch...

WSO2CON 2024 - Cloud Native Middleware: Domain-Driven Design, Cell-Based Arch...

WSO2CON 2024 - How to Run a Security Program

WSO2CON 2024 - How to Run a Security Program

WSO2CON 2024 - How to Run a Security Program

Direct Style Effect Systems -The Print[A] Example- A Comprehension Aid

Direct Style Effect Systems -The Print[A] Example- A Comprehension Aid

Direct Style Effect Systems -The Print[A] Example- A Comprehension Aid

WSO2Con204 - Hard Rock Presentation - Keynote

WSO2Con204 - Hard Rock Presentation - Keynote

WSO2Con204 - Hard Rock Presentation - Keynote

%in kaalfontein+277-882-255-28 abortion pills for sale in kaalfontein

%in kaalfontein+277-882-255-28 abortion pills for sale in kaalfontein

%in kaalfontein+277-882-255-28 abortion pills for sale in kaalfontein

%in Rustenburg+277-882-255-28 abortion pills for sale in Rustenburg

%in Rustenburg+277-882-255-28 abortion pills for sale in Rustenburg

%in Rustenburg+277-882-255-28 abortion pills for sale in Rustenburg

We specialize in Psychic Readings, Psychic Love Spells, Binding Love Spells, Obsession Spells, Voodoo Spells, Lottery Spells, Marriage Spells, Black Magic Spells, Palm Readings & much more. Are you depressed? We perform this come-to-me love spell that works instantly with the aim of bringing back the victim to the person performing the magic. Have you lost your lover? We perform this come-to-me love spell that works instantly with the aim of bringing back the victim to the person performing the magic. Have you lost your lover? Do u need to solve any relationship problem? Contact the powerful spells caster chief kule with love spells that work overnight and love spells that really work. Have you found yourself infatuated with a special someone you think could be the one? Are you looking for a spell to provide them with a nudge in the right direction? Or maybe the spell you cast didn’t achieve the results you were hoping for? Whether you’re new or versed in the ways of spell casting, we’re here to help. Today we’re going to provide you with a detailed guide on the types of love spells to cast. Not only that but there’s something for those who wish to find outside advice from more advanced spell casters. We’re also going to provide you with the top sites available to help you with your dilemma. Let’s begin our journey by educating ourselves on love magic and what a real love caster looks like. Love Magic and Love Casters Love magic made its first appearance back in Ancient Egypt and has been an active practice since. This type of magic is a branch of traditional magic and can be practiced in various ways. Typically the more common use of love magic is through the work of spells, but other methods look like Charms Rituals-LOVE Potions-Dolls and even Amulets If you are interested in becoming a love caster, be prepared for what’s to come. A genuine love caster knows that the art of love casting is no easy feat and shouldn’t be done casually. You should know that not only does it require you to be gifted spiritually, but you must be ready to serve others. Someone who is considered a real love caster has experience in all manner of spells, no matter the difficulty. Training yourself in attraction, commitment, and marriage spells is an excellent place to start. But this by no means will make you a professional. Practice your craft and expand your knowledge; understand that you will possess the ability to help others in time truly. Types of Love Spells What better way to start broadening your experiences with love spells than by learning more about them? These spells work like just about any other spell. Simply apply your intention, use a medium (sigils, mantras, candles, or charm bags), and top it off with establishing the belief that you will receive what you want. So what kind of spells are available and which ones suit your needs the best? Let’s take a look at the many options you have at your disposal.

%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...

%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...

%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...

This presentation covers the following topics: What is logging? The purpose of logging: Debugging The purpose of logging: Security The purpose of logging: Stats & analytics Traditional logging Traditional logging: Advantages Traditional logging: Disadvantages The solution: Large-scale logging Large-scale logging: Core principles Large-scale logging: Solution types Large-scale logging: Cloud vs on-prem Large-scale logging: Operational complexity Large-scale logging: Security Large-scale logging: Costs Large-scale logging: On-prem comparison - Elasticsearch - Grafana Loki - VictoriaLogs On-prem comparison: Setup and operation On-prem comparison: Costs On-prem comparison: Full-text search support On-prem comparison: How to efficiently query 100TB of logs? On-prem comparison: Integration with CLI tools VictoriaLogs for large-scale logging VictoriaLogs demo instance - Ingestion rate: 3600 messages / minute - The number of log messages: 1.1 billion - Uncompressed log messages’ size: 1.5TB - Compressed log messages’ size: 23GB - Compression ratio: 47x - Memory usage: 150MB VictoriaLogs CLI integration demo - Which errors have occurred in all the apps during the last hour? - How many errors have occurred during the last hour? - Which apps generated the most of errors during the last hour? - The number of per-minute errors for the last 10 minutes - Status codes for the last hour - Non-200 status codes for the last week - Top client IPs for the last 4 weeks with 404 and 500 response status codes - Per-month stats for the given IP across all the logs Large-scale logging solution MUST provide excellent CLI integration VictoriaLogs: (temporary) drawbacks VictoriaLogs: Recap - Easy to setup and operate - The lowest RAM usage and disk space usage (up to 30x less than Elasticsearch and Grafana Loki) - Fast full-text search - Excellent integration with traditional command-line tools for log analysis - Accepts logs from popular log shippers (Filebeat, Fluentbit, Logstash, Vector, Promtail, Grafana Agent) - Open source and free to use!

Large-scale Logging Made Easy: Meetup at Deutsche Bank 2024

Large-scale Logging Made Easy: Meetup at Deutsche Bank 2024

Large-scale Logging Made Easy: Meetup at Deutsche Bank 2024

VictoriaMetrics

WSO2CON 2024 - Does Open Source Still Matter?

WSO2CON 2024 - Does Open Source Still Matter?

WSO2CON 2024 - Does Open Source Still Matter?

Dernier (20)

%in Bahrain+277-882-255-28 abortion pills for sale in Bahrain

%in Bahrain+277-882-255-28 abortion pills for sale in Bahrain

%in Bahrain+277-882-255-28 abortion pills for sale in Bahrain

Abortion Pills In Pretoria ](+27832195400*)[ 🏥 Women's Abortion Clinic In Pre...

Abortion Pills In Pretoria ](+27832195400*)[ 🏥 Women's Abortion Clinic In Pre...

Abortion Pills In Pretoria ](+27832195400*)[ 🏥 Women's Abortion Clinic In Pre...

%+27788225528 love spells in Knoxville Psychic Readings, Attraction spells,Br...

%+27788225528 love spells in Knoxville Psychic Readings, Attraction spells,Br...

%+27788225528 love spells in Knoxville Psychic Readings, Attraction spells,Br...

WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...

WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...

WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...

%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...

%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...

%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...

%in Soweto+277-882-255-28 abortion pills for sale in soweto

%in Soweto+277-882-255-28 abortion pills for sale in soweto

%in Soweto+277-882-255-28 abortion pills for sale in soweto

WSO2CON 2024 - WSO2's Digital Transformation Journey with Choreo: A Platforml...

WSO2CON 2024 - WSO2's Digital Transformation Journey with Choreo: A Platforml...

WSO2CON 2024 - WSO2's Digital Transformation Journey with Choreo: A Platforml...

VTU technical seminar 8Th Sem on Scikit-learn

VTU technical seminar 8Th Sem on Scikit-learn

VTU technical seminar 8Th Sem on Scikit-learn

Architecture decision records - How not to get lost in the past

Architecture decision records - How not to get lost in the past

Architecture decision records - How not to get lost in the past

AI & Machine Learning Presentation Template

AI & Machine Learning Presentation Template

AI & Machine Learning Presentation Template

Crypto Cloud Review - How To Earn Up To $500 Per DAY Of Bitcoin 100% On AutoP...

Crypto Cloud Review - How To Earn Up To $500 Per DAY Of Bitcoin 100% On AutoP...

Crypto Cloud Review - How To Earn Up To $500 Per DAY Of Bitcoin 100% On AutoP...

WSO2CON 2024 - Cloud Native Middleware: Domain-Driven Design, Cell-Based Arch...

WSO2CON 2024 - Cloud Native Middleware: Domain-Driven Design, Cell-Based Arch...

WSO2CON 2024 - Cloud Native Middleware: Domain-Driven Design, Cell-Based Arch...

WSO2CON 2024 - How to Run a Security Program

WSO2CON 2024 - How to Run a Security Program

WSO2CON 2024 - How to Run a Security Program

Direct Style Effect Systems -The Print[A] Example- A Comprehension Aid

Direct Style Effect Systems -The Print[A] Example- A Comprehension Aid

Direct Style Effect Systems -The Print[A] Example- A Comprehension Aid

WSO2Con204 - Hard Rock Presentation - Keynote

WSO2Con204 - Hard Rock Presentation - Keynote

WSO2Con204 - Hard Rock Presentation - Keynote

%in kaalfontein+277-882-255-28 abortion pills for sale in kaalfontein

%in kaalfontein+277-882-255-28 abortion pills for sale in kaalfontein

%in kaalfontein+277-882-255-28 abortion pills for sale in kaalfontein

%in Rustenburg+277-882-255-28 abortion pills for sale in Rustenburg

%in Rustenburg+277-882-255-28 abortion pills for sale in Rustenburg

%in Rustenburg+277-882-255-28 abortion pills for sale in Rustenburg

%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...

%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...

%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...

Large-scale Logging Made Easy: Meetup at Deutsche Bank 2024

Large-scale Logging Made Easy: Meetup at Deutsche Bank 2024

Large-scale Logging Made Easy: Meetup at Deutsche Bank 2024

WSO2CON 2024 - Does Open Source Still Matter?

WSO2CON 2024 - Does Open Source Still Matter?

WSO2CON 2024 - Does Open Source Still Matter?

Security and Risk management in SDLC Software development Life cycle

1.   Initiation: Security User Stories Identified  Planning: Incorporate Risk identified in System Architecture and Design.  Implementation: Assess Identified Risk on Implementation.  Monitoring & Control: Changes, CR (Change request must be reauthorized.  Closing: Dispose off unwanted software, hardware & information Components. Security Risk Management in SDLC

2. Step 1. System Characterization Step 2. Threat Identification Step 3. Vulnerability Identification Step 4. Control Analysis Step 5. Likelihood Determination Step 6. Impact Analysis Step 7. Risk Determination Step 8. Control Recommendations Step 9. Result determination.

3.  Risk Management Steps Defined under PMI Risk Management Process Groups : Input – process – Output - Outputs: (Risk Register, Risk Management plan, Risk Response, Communication Management plan, Quantitative and Qualitative Risk Assessment and Mitigation) This is Almost similar To NIST methodology discussed above. PMI groups deals with Project management in general. Whereas in NIST RM steps are Generic and platform independent to work across multiple methodology.

4.   This is Evolving presentation: Will add more details Refer Blog/presentation Read by almost 50,000 people. More details and write up can be found at:  http://www.productmanagementview.wordpress.com  http://projectmanagerview.wordpress.com  http://sandyclassic.wordpress.com More Details