Reducing security risk is no longer a luxury; it’s an essential part of business success, authors say. The Gramm-Leach-Bliley Act and the Health Insurance Portability and Accountability Act are driving efforts to improve corporate security practices. Vulnerability evaluations examine only specific systems or components to identify known weaknesses. Asset-based assessments examine the information that must be protected and how well systems and security practices provide that protection. Assess risks in relation to your own business goals, objectives, mission, and so forth.”]
Source: https://www.csoonline.com/article/2119551/asset-based-information-security-risk-assessments.html