1 minute read
Cyber Security Risk Assessment
HIGH
Confidentiality
Advertisement
Unauthorized disclosure of information = limited adverse effect on organizational operations, organizational assets, or individuals.
Integrity
Availability
Unauthorized modification or destruction of information = limited adverse effect on organizational operations, organizational assets, or individuals.
National Institute of Standards and Technology (NIST) Special Publication 800-60, Volume 2, Rev. 1
Disruption of access to or use of information or an information system = limited adverse effect on organizational operations, organizational assets, or individuals.
The information types identified for NC4 SS are Crime Prevention Information Type and Criminal Apprehension Information Type, with the following security categorization recommendation:
