Timothy P. Layton

Information Security (eBook, ePUB)

Design, Implementation, Measurement, and Compliance

• Format: ePub

Produktbeschreibung

Presenting an in-depth perspective of the ISO/IEC 17799 Information Security Standard, this book provides a detailed analysis of how to effectively measure an information security program using this standard. It includes a qualitative-based risk assessment methodology and describes a quantitative measurement framework that organizations can adopt and implement within the risk assessment process, allowing firms to customize practices to their own needs. This text also includes a comprehensive gap analysis of the recently rescinded standard against the newly released version, making the transition to the new standard much easier for organizations and practitioners.

---

Dieser Download kann aus rechtlichen Gründen nur mit Rechnungsadresse in A, B, BG, CY, CZ, D, DK, EW, E, FIN, F, GR, HR, H, IRL, I, LT, L, LR, M, NL, PL, P, R, S, SLO, SK ausgeliefert werden.

Produktdetails

• Verlag: Taylor & Francis
• Erscheinungstermin: 19. April 2016
• Englisch
• ISBN-13: 9781040167434
• Artikelnr.: 72269087

Autorenporträt

Timothy P. Layton

Inhaltsangabe

EVALUATING AND MEASURING AN INFORMATION SECURITY PROGRAM. Information
Security Risk Assessment Model (ISRAM(TM)). Global Information Security
Assessment Methodology (GISAM(TM)). Developing an Information Security
Evaluation (ISE(TM)) Process. A Security Baseline. Background of the
ISO/IEC 17799 Standard. ISO/IEC 17799:2005 Gap Analysis. ANALYSIS OF
ISO/IEC 17799:2005 (27002) CONTROLS. Security Policy. Organization of
Information Security. Asset Management. Human Resources Security. Physical
and Environmental Security. Communications and Operations Management.
Access Control. Information Systems Acquisition, Development, and
Maintenance. Information Security Incident Management. Business Continuity
Management. Compliance. Appendix A: ISO Standards Cited in ISO/IEC
17799:2005. Appendix B: General References. Index.