IT Security Governance Guidebook with Security Program Metrics on CD-ROM

IT Security Governance Guidebook with Security Program Metrics on CD-ROM
Author: Fred Cohen
Publisher: CRC Press
Total Pages: 162
Release: 2006-11-14
Genre: Computers
ISBN: 1040169724

The IT Security Governance Guidebook with Security Program Metrics provides clear and concise explanations of key issues in information protection, describing the basic structure of information protection and enterprise protection programs. Including graphics to support the information in the text, this book includes both an overview of material as well as detailed explanations of specific issues. The accompanying downloadable resources offers a collection of metrics, formed from repeatable and comparable measurement, that are designed to correspond to the enterprise security governance model provided in the text, allowing an enterprise to measure its overall information protection program.

IT Security Governance Guidebook with Security Program Metrics on CD-ROM

IT Security Governance Guidebook with Security Program Metrics on CD-ROM
Author: Fred Cohen
Publisher: Auerbach Publications
Total Pages: 0
Release: 2006-11-14
Genre: Computers
ISBN: 9780849384356

The IT Security Governance Guidebook with Security Program Metrics on CD-ROM provides clear and concise explanations of key issues in information protection, describing the basic structure of information protection and enterprise protection programs. Including graphics to support the information in the text, this book includes both an overview of material as well as detailed explanations of specific issues. The accompanying CD-ROM offers a collection of metrics, formed from repeatable and comparable measurement, that are designed to correspond to the enterprise security governance model provided in the text, allowing an enterprise to measure its overall information protection program.

Complete Guide to Security and Privacy Metrics

Complete Guide to Security and Privacy Metrics
Author: Debra S. Herrmann
Publisher: CRC Press
Total Pages: 848
Release: 2007-01-22
Genre: Business & Economics
ISBN: 1420013289

This bookdefines more than 900 metrics measuring compliance with current legislation, resiliency of security controls, and return on investment. It explains what needs to be measured, why and how to measure it, and how to tie security and privacy metrics to business goals and objectives. The metrics are scaled by information sensitivity, asset criticality, and risk; aligned to correspond with different lateral and hierarchical functions; designed with flexible measurement boundaries; and can be implemented individually or in combination. The text includes numerous examples and sample reports and stresses a complete assessment by evaluating physical, personnel, IT, and operational security controls.

Creating an Information Security Program from Scratch

Creating an Information Security Program from Scratch
Author: Walter Williams
Publisher: CRC Press
Total Pages: 251
Release: 2021-09-15
Genre: Computers
ISBN: 1000449769

This book is written for the first security hire in an organization, either an individual moving into this role from within the organization or hired into the role. More and more, organizations are realizing that information security requires a dedicated team with leadership distinct from information technology, and often the people who are placed into those positions have no idea where to start or how to prioritize. There are many issues competing for their attention, standards that say do this or do that, laws, regulations, customer demands, and no guidance on what is actually effective. This book offers guidance on approaches that work for how you prioritize and build a comprehensive information security program that protects your organization. While most books targeted at information security professionals explore specific subjects with deep expertise, this book explores the depth and breadth of the field. Instead of exploring a technology such as cloud security or a technique such as risk analysis, this book places those into the larger context of how to meet an organization's needs, how to prioritize, and what success looks like. Guides to the maturation of practice are offered, along with pointers for each topic on where to go for an in-depth exploration of each topic. Unlike more typical books on information security that advocate a single perspective, this book explores competing perspectives with an eye to providing the pros and cons of the different approaches and the implications of choices on implementation and on maturity, as often a choice on an approach needs to change as an organization grows and matures.

Information Security Management Handbook

Information Security Management Handbook
Author: Harold F. Tipton
Publisher: CRC Press
Total Pages: 3280
Release: 2007-05-14
Genre: Business & Economics
ISBN: 1439833036

Considered the gold-standard reference on information security, the Information Security Management Handbook provides an authoritative compilation of the fundamental knowledge, skills, techniques, and tools required of today's IT security professional. Now in its sixth edition, this 3200 page, 4 volume stand-alone reference is organized under the C

Oracle Identity Management

Oracle Identity Management
Author: Marlin B. Pohlman
Publisher: CRC Press
Total Pages: 548
Release: 2008-04-09
Genre: Business & Economics
ISBN: 142007248X

In the third edition of this popular reference, identity management specialist Marlin B. Pohlman offers a definitive guide for corporate stewards struggling with the challenge of meeting regulatory compliance. He examines multinational regulations, delves into the nature of governance, risk, and compliance (GRC), and outlines a common taxonomy for the GRC space. He also cites standards that are used, illustrating compliance frameworks such as BSI, ITIL, and COBIT. The text focuses on specific software components of the Oracle Identity Management solution and includes elements of the Oracle compliance architecture.

Software Deployment, Updating, and Patching

Software Deployment, Updating, and Patching
Author: Bill Stackpole
Publisher: CRC Press
Total Pages: 424
Release: 2007-12-17
Genre: Business & Economics
ISBN: 1420013297

The deployment of software patches can be just as challenging as building entirely new workstations. Training and support issues can haunt even the most successful software launch for months. Preparing for the rigors of software deployment includes not just implementing change, but training employees, predicting and mitigating pitfalls, and managin

Building an Effective Information Security Policy Architecture

Building an Effective Information Security Policy Architecture
Author: Sandy Bacik
Publisher: CRC Press
Total Pages: 360
Release: 2008-05-20
Genre: Business & Economics
ISBN: 1420059068

Information security teams are charged with developing and maintaining a set of documents that will protect the assets of an enterprise from constant threats and risks. In order for these safeguards and controls to be effective, they must suit the particular business needs of the enterprise. A guide for security professionals, Building an Eff

How to Achieve 27001 Certification

How to Achieve 27001 Certification
Author: Sigurjon Thor Arnason
Publisher: CRC Press
Total Pages: 348
Release: 2007-11-28
Genre: Computers
ISBN: 1420013130

The security criteria of the International Standards Organization (ISO) provides an excellent foundation for identifying and addressing business risks through a disciplined security management process. Using security standards ISO 17799 and ISO 27001 as a basis, How to Achieve 27001 Certification: An Example of Applied Compliance Management helps a

Digital Privacy

Digital Privacy
Author: Alessandro Acquisti
Publisher: CRC Press
Total Pages: 494
Release: 2007-12-22
Genre: Business & Economics
ISBN: 1420052187

During recent years, a continuously increasing amount of personal data has been made available through different websites around the world. Although the availability of personal information has created several advantages, it can be easily misused and may lead to violations of privacy. With growing interest in this area, Digital Privacy: Theory, Technologies, and Practices addresses this timely issue, providing information on state-of-the-art technologies, best practices, and research results, as well as legal, regulatory, and ethical issues. This book features contributions from experts in academia, industry, and government.