Rec. ITU-T X.1059 (10/2019) Implementation guidance for telecommunication organizations on risk management of their assets globally accessible in IP-based networks
Summary
History
FOREWORD
Table of Contents
Introduction
1 Scope
2 References
3 Definitions
     3.1 Terms defined elsewhere
     3.2 Terms defined in this Recommendation
4 Abbreviations and acronyms
5 Conventions
6 Overview of risk management for AGIT
     6.1 Processes
     6.2 Phases and steps
     6.3 Structure of the description of the AGIT risk management process
7 Risk assessment
     7.1 Risk identification
          7.1.1 Identification of AGIT
               7.1.1.1 Description
               7.1.1.2 Implementation guidance
          7.1.2 Identification of threats
               7.1.2.1 Description
               7.1.2.2 Implementation guidance
          7.1.3 Identification of in-use controls
               7.1.3.1 Description
               7.1.3.2 Implementation guidance
          7.1.4 Identification of vulnerabilities
               7.1.4.1 Description
               7.1.4.2 Implementation guidance
          7.1.5 Identification of impact
               7.1.5.1 Description
     7.2 Risk analysis
          7.2.1 Preliminary analysis
               7.2.1.1 Description
               7.2.1.2 Implementation guidance
          7.2.2 Detailed analysis
               7.2.2.1 Description
               7.2.2.2 Implementation guidance
8 Risk evaluation
     8.1 Description
9 Risk treatment
     9.1 Overview
     9.2 Emergent treatment
          9.2.1 Description
          9.2.2 Implementation guidance
     9.3 Regular treatment
          9.3.1 Description
          9.3.2 Implementation guidance
10 Monitoring and review
     10.1 Description
     10.2 Implementation guidance
11 Communication and consultation
     11.1 Description
     11.2 Implementation guidance
12 Recording and reporting
     12.1 Description
     12.2 Implementation guidance
Bibliography