rel="nofollow" href="#ulink_fd960cf6-6f2e-5182-b5be-ebc2bea212c1">3.6 Dynamic Risk Assessment
3.7 Difference Between Assessment and Audit57
3.8.2 NIST SP 800-30, R1 — Guide for Conducting Risk Assessments
3.8.3 NIST SP 800-30, R0 — Risk Management Guide for Information Technology Systems
3.8.4 Cyber Security Assessments of Industrial Control Systems — Good Practice Guide
3.8.5 Hybrid Risk Assessment Flow Chart
3.9.2 Conducting the Assessment
3.10 Questions for Further Thought and Discussion
PART II HANDBOOK Chapter 4 Pre-Assessment
In this chapter you will discover:
4.4 Collect Artifacts, Templates, Preliminary Documentation
4.5 Define the Assessment Plan
4.6 Hold the Initial Team Meeting
4.10.1 Example Site Risk Assessment Visit Plan
4.10.2 Preparing Your Steno Pad
4.10.3 Pre-Checking Control System Assets for Vulnerabilities
4.11 Excited to Start the Assessment
Chapter 5 The Power of the Observation
In this chapter you will discover:
5.1 An Introduction to the History of Observations
5.2 Just What is an “Observation?”
5.4.2 Communicating Your Observations
5.5 Unintended Influence of the Observation on Performance of Work
5.7 The Power of the Observation
In this chapter you will discover:
6.1 On Site Arrival — Entrance Meeting
6.2 Example Site Schedule and Activities
