Information security a practical guide : bridging the gap between IT and management
Covering everything from your first day at work as an information security professional to developing and implementing enterprise-wide information security processes, this book explains the basics of information security, and how to explain them to management and others so that security risks can be...
Main Author: | |
---|---|
Format: | eBook |
Language: | English |
Published: |
Ely, Cambridgeshire, United Kingdom
It Governance Publishing
2015
|
Subjects: | |
Online Access: | |
Collection: | O'Reilly - Collection details see MPG.ReNa |
Summary: | Covering everything from your first day at work as an information security professional to developing and implementing enterprise-wide information security processes, this book explains the basics of information security, and how to explain them to management and others so that security risks can be appropriately addressed. Topics covered include: how to understand the security culture of the organization; getting to know the organisation and building relationships with key personnel; how to identify gaps in the organisation's security set-up; the impact of compromise on the organization; identifying, categorising and prioritising risks; the five levels of risk appetite and how to apply risk treatments via security controls; understanding the threats facing your organisation and how to communicate them; how to raise security awareness and engage with specific peer groups; system mapping and documentation (including control boundaries and where risks exist). -- |
---|---|
Physical Description: | 1 volume |
ISBN: | 9781849287418 1849287422 9781849287401 1849287406 1849287414 |