Tony Campbell

Practical Information Security Management (eBook, PDF)

A Complete Guide to Planning and Implementation

• Format: PDF

Produktbeschreibung

This book provides a wealth of practical advice for anyone responsible for information security management in the workplace. Focusing on the 'how' rather than the 'what', Practical Information Security Management shows you how to create security-focused business propositions that consider the balance between cost, risk and usability. The book accompanies you on your journey as you set out on the path to become an information security manager, offering a wealth of background history that explains how the industry works today, looking at how you set up an effective infosec practice, hire the right people and strike the balance between security controls, costs and risk.

Together we'll cut through the policies, regulations and standards to expose the real inner workings of what make a security management program effective, covering the full gamut of subject matter pertaining to security management: organizational structures, security architectures, technical controls,governance frameworks, and operational security matters.

What You Will Learn:

• The practical aspects of being an effective information security manager
• How to strike the right balance between cost and risk
• How to take security policies and standards and make them work in reality
• How to leverage complex security functions, such as Digital Forensics, Incident Response and Security Architecture

Who This Book is For:

This is a book for anyone who wants to make a difference in offering effective security management for their business. You might already be a security manager seeking insight into areas of the job that you've not looked at before, or you might be a techie or risk guy wanting to switch into this challenging new career. Whatever your career goals are, Practical Information Security Management has something to offer you.

---

Dieser Download kann aus rechtlichen Gründen nur mit Rechnungsadresse in A, B, BG, CY, CZ, D, DK, EW, E, FIN, F, GR, HR, H, IRL, I, LT, L, LR, M, NL, PL, P, R, S, SLO, SK ausgeliefert werden.

Produktdetails

• Verlag: Apress
• Seitenzahl: 237
• Erscheinungstermin: 29. November 2016
• Englisch
• ISBN-13: 9781484216859
• Artikelnr.: 53153287

Autorenporträt

Tony Campbell has been in the IT industry for over 25 years with the majority of his career providing consultancy services to the UK government in security architecture and security management. Prior to moving to Perth in 2013, Tony was Chief Security Architect on a large UK Ministry of Defence programme and managed a team of enterprise security architects. Since moving to Australia, he has provided strategic security consultancy to a variety of local government agencies and authored ISO27001 security manuals. Tony now works for Kinetic IT, a successful Australian owned and operated IT managed services provider where he has developed IT security strategies for both WA and Victorian clients, and is highly regarded for his insights by customers and colleagues alike. He can be contacted at: tcampbell666@gmail.com.

Inhaltsangabe

Chapter 1: Evolution of a Profession.- Chapter 2: Threats and Vulnerabilities.- Chapter 3: Introducing the Security Manager.- Chapter 4: Information Security as a Business Function.- Chapter 5: Information Security Implementation.- Chapter 6: Standards Frameworks Guidelines and Legislation.- Chapter 7: Protection of Information.- Chapter 8: Protection of People.- Chapter 9: Protection of Premises.- Chapter 10: Protection of Systems.- Chapter 11: Digital Evidence and Incident Response.- Chapter 12: Cloud Computing Security.- Chapter 13: Industrial Control Systems.- Chapter 14: Secure Systems Development.

Rezensionen

"The security professional author provides in about 235 pages a clear and concise textbook-style introduction to the field of information security management. ... students and other professionals will find basic information, in one location, in an easily read format. ... This work provides an excellent starting point for anyone wanting a rapid comprehensive overview of information security management." (Computing Reviews, June, 2017)