Security Planning
An Applied Approach
Buch in deiner Nähe kaufen
Beschreibung
This book guides readers through building an IT security plan. Offering a template, it helps readers to prioritize risks, conform to regulation, plan their defense and secure proprietary/confidential information. The process is documented in the supplemental online security workbook. Security Planning is designed for the busy IT practitioner, who does not have time to become a security expert, but needs a security plan now. It also serves to educate the reader of a broader set of concepts related to the security environment through the Introductory Concepts and Advanced sections. The book serves entry level cyber-security courses through those in advanced security planning. Exercises range from easier questions to the challenging case study. This is the first text with an optional semester-long case study: Students plan security for a doctor’s office, which must adhere to HIPAA regulation. For software engineering-oriented students, a chapter on secure software development introduces security extensions to UML and use cases (with case study). The text also adopts the NSA’s Center of Academic Excellence (CAE) revamped 2014 plan, addressing five mandatory and 15 Optional Knowledge Units, as well as many ACM Information Assurance and Security core and elective requirements for Computer Science.
Serves as a Practical Guide: guides the reader in documenting a security plan Focuses on Doing: Text is written as a guide; not a theoretical book Provides a Template for Security Planning: Security Workbook on makes documenting a security plan easy and fast Addresses Organizational Security: Addresses three aspects of technical, administrative and physical security Serves as a Professional Resource: Text is professional (based on CISA/CISM/CISSP materials); interesting (involving actual news stories), relevant (includes materials from recent security reports) Includes supplementary material: sn.pub/extras
Autor*in
Susan Lincke
Themen in »Security Planning«
Audit Computer science Cybersecurity Data security standard Fraud/social engineering HIPAA regulation Information security Information technology Management information systems Risk management Secure software development Security planning Security standards and regulation
Stimmen zu »Security Planning«
“The book is short, and the author was thoughtful enough … to help the reader by indicating what each user needs. … It is thoughtfully written and informative … . These should most certainly be read by everyone involved in computing at every organization. … I recommend this book.” (Mordechai Ben-Menachem, Computing Reviews, December, 2015)
()