Security Risk Management

Name: Security Risk Management
Author: Evan Wheeler

Building an Information Security Risk Management Program from the Ground Up

Specificaties

Paperback, 360 blz. | Engels

Syngress Media | e druk, 2011

ISBN13: 9781597496155

Rubricering

Hoofdrubriek : Computer en informatica

Juridisch : Computer en informatica

Syngress Media e druk, 2011 9781597496155

Verwachte levertijd ongeveer 9 werkdagen

53,74

In winkelwagen

Samenvatting

The goal of Security Risk Management is to teach you practical techniques that will be used on a daily basis, while also explaining the fundamentals so you understand the rationale behind these practices. Security professionals often fall into the trap of telling the business that they need to fix something, but they can't explain why. This book will help you to break free from the so-called "best practices" argument by articulating risk exposures in business terms. You will learn techniques for how to perform risk assessments for new IT projects, how to efficiently manage daily risk activities, and how to qualify the current risk level for presentation to executive level management. While other books focus entirely on risk analysis methods, this is the first comprehensive guide for managing security risks.

-Named a 2011 Best Governance and ISMS Book by InfoSec Reviews
-Includes case studies to provide hands-on experience using risk assessment tools to calculate the costs and benefits of any security investment
-Explores each phase of the risk management lifecycle, focusing on policies and assessment processes that should be used to properly assess and mitigate risk
-Presents a roadmap for designing and implementing a security risk management program

Specificaties

ISBN13:9781597496155

Taal:Engels

Bindwijze:paperback

Aantal pagina's:360

Uitgever:Syngress Media

Verschijningsdatum:24-6-2011

Hoofdrubriek:Computer en informatica

Inhoudsopgave

Part I - Introduction to Risk Management Chapter 1. The Security Evolution Chapter 2. Risky Business Chapter 3. The Risk Management Lifecycle Chapter 4. Risk Profiling Part II - Risk Assessment and Analysis Techniques Chapter 5. Formulating a Risk Chapter 6. Risk Exposure Factors Chapter 7. Security Controls and Services Chapter 8. Risk Evaluation and Mitigation Strategies Chapter 9. Reports and Consulting Chapter 10. Risk Assessment Techniques Part III - Building and Running a Risk Management Program Chapter 11. Threat and Vulnerability Management Chapter 12. Security Risk Reviews Chapter 13. A Blueprint for Security Chapter 14. Building a Program from Scratch Appendix A: Security Risk Profile Appendix B: Risk Models and Scales Appendix C: Architectural Risk Analysis Reference Tables