Week 07: Security Assessment and Testing

For this week’s “In the News”, perform research on one of the following:

• new testing requirements (e.g. SSAE18 SOC1 or SOC2)
• new testing requriements put into place due to regulations
• how security assessments and testing integrates with other domains, such as cloud network architecture, or software development lifecycle?

As you read about security assessments, what can you conclude from this week’s readings about:

• How often security assessments should be performed?
• Are there factors that would decide how often you would perform these assessments?
• Conditions that might alter that schedule?
• What security assessments are most essential?