|
Risk Management for Computer Security: Protecting Your Network Information Assets | 
| Authors: Andy Jones, Debi Ashenden
Publisher: Butterworth-Heinemann
Category: Book
List Price: $43.95
Buy New: $34.29
You Save: $9.66 (22%)
New (21) Used (2) from $34.29
Avg. Customer Rating:  1 reviews
Sales Rank: 866968
Media: Paperback
Number Of Items: 1
Pages: 296
Shipping Weight (lbs): 1.1
Dimensions (in): 8.8 x 5.9 x 0.9
ISBN: 0750677953
Dewey Decimal Number: 658.478
EAN: 9780750677950
ASIN: 0750677953
Publication Date: March 29, 2005
Availability: Usually ships in 1-2 business days
Shipping: International shipping available
Condition: Brand New. Delivery is usually 5 - 8 working days from order, International is by Royal Mail Airmail
|
| Editorial Reviews:
Product Description
The information systems security (InfoSec) profession remains one of the fastest growing professions in the world today. With the advent of the Internet and its use as a method of conducting business, even more emphasis is being placed on InfoSec. However, there is an expanded field of threats that must be addressed by today's InfoSec and information assurance (IA) professionals. brOperating within a global business environment with elements of a virtual workforce can create problems not experienced in the past. How do you assess the risk to the organization when information can be accessed, remotely, by employees in the field or while they are traveling internationally? How do you assess the risk to employees who are not working on company premises and are often thousands of miles from the office? How do you assess the risk to your organization and its assets when you have offices or facilities in a nation whose government may be supporting the theft of the corporate "crown jewels" in order to assist their own nationally owned or supported corporations? If your risk assessment and management program is to be effective, then these issues must be assessed.brPersonnel involved in the risk assessment and management process face a much more complex environment today than they have ever encountered before. brThis book covers more than just the fundamental elements that make up a good risk program. It provides an integrated "how to" approach to implementing a corporate program, complete with tested methods and processes; flowcharts; and checklists that can be used by the reader and immediately implemented into a computer and overall corporate security program. The challenges are many and this book will help professionals in meeting their challenges as we progress through the 21st Century. brbr*Presents material in an engaging, easy-to-follow manner that will appeal to both advanced INFOSEC career professionals and network administrators entering the information security professionbr*Addresses the needs of both the individuals who are new to the subject as well as of experienced professionalsbr*Provides insight into the factors that need to be considered fully explains the numerous methods, processes procedures of risk management
|
| Customer Reviews:
Best Risk Management book on the market today! April 29, 2005
7 out of 7 found this review helpful
There are many books on the market dealing with risk management as part of InfoSec. So, I wasn't sure that this one would be better, or provide any new information. I was first surprised to find it written in a non-techie way. That means the information is easy to read and more importantly, easy to understand. Also, because it is written by two authors from the UK, it offers a slightly different look than what has been written on the topic by numerous U.S. authors.br /br /What I especially liked about this book is that it not only dealt with all of today's relative risk management issues but the section on "The Threat Assessment Process" was really well done. Often this is not given the importance it deserves as other authors concentrated on the risks. However, one must know the enemies to defend again them. This part was a nice surprise.br /br /So for today's professional whose experience is vast or limited, this book offers all you need to know about risk manaagement as it relates to InfoSec - or "Computer Security" as the authors call it. br /br /
|
|
|
| |