SIA

A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z

Abbreviation(s) and Synonym(s):

Security Impact Analysis
Security Industry Association

Definition(s):

  The analysis conducted by an organizational official to determine the extent to which changes to the information system have affected the security state of the system.
Source(s):
NIST SP 800-137 under Security Impact Analysis NIST SP 800-53
NIST SP 800-30 Rev. 1 under Security Impact Analysis NIST SP 800-37
NIST SP 800-37 Rev. 1 under Security Impact Analysis
NIST SP 800-39 under Security Impact Analysis NIST SP 800-37
NIST SP 800-53 Rev. 4 under Security Impact Analysis CNSSI 4009
NIST SP 800-53A Rev. 4 under Security Impact Analysis NIST SP 800-37

  The analysis conducted by an organizational official to determine the extent to which a change to the information system has or may have affected the security posture of the system.
Source(s):
NIST SP 800-128 under Security Impact Analysis CNSSI 4009 - Adapted

  The analysis conducted by an agency official, often during the continuous monitoring phase of the security certification and accreditation process, to determine the extent to which changes to the information system have affected the security posture of the system.
Source(s):
NIST SP 800-18 Rev. 1 under Security Impact Analysis NIST SP 800-37

Glossary Comments

Comments about specific definitions should be sent to the authors of the linked Source publication. For NIST publications, an email is usually found within the document.

Comments about the glossary's presentation and functionality should be sent to secglossary@nist.gov.

See NISTIR 7298 Rev. 3 for additional details.

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

Computer Security Resource Center

Computer Security Resource Center

SIA

Glossary Comments