Practical Guide to Security Assessments
Regular price
€173.60
A01=Sudhanshu Kairab
Author_Sudhanshu Kairab
business
Business Process
Business Process Evaluation
Business Process Owners
Category=KJQ
Category=URY
Conducting Security Assessments
cybersecurity assessment
data protection protocols
detection
eq_bestseller
eq_business-finance-law
eq_computing
eq_isMigrated=1
eq_isMigrated=2
eq_nobargain
eq_non-fiction
High Level Control Objectives
HIPAA Security
HIPAA Security Requirement
incidents
information
information risk management
Information Security
Information Security Measures
Information Security Program
Internal Audit
intrusion
Intrusion Detection Systems
IT governance frameworks
methodology
owners
Pr Ep
process
program
Question Sets
regulatory compliance strategies
Remote Access
Risk Analysis
Risk Score Calculation
SARBANES OXLEY Act
Security Assessment
Security Assessment Methodology
Security Assessment Process
Sensitive Information
structured security assessment methodology
system
Te Ch
Technology Owners
Title III
vulnerability prioritization
Product details
- ISBN 9780849317064
- Weight: 1120g
- Dimensions: 156 x 234mm
- Publication Date: 29 Sep 2004
- Publisher: Taylor & Francis Ltd
- Publication City/Country: GB
- Product Form: Hardback
Secure
checkout
Fast Shipping
Easy returns
The modern dependence upon information technology and the corresponding information security regulations and requirements force companies to evaluate the security of their core business processes, mission critical data, and supporting IT environment. Combine this with a slowdown in IT spending resulting in justifications of every purchase, and security professionals are forced to scramble to find comprehensive and effective ways to assess their environment in order to discover and prioritize vulnerabilities, and to develop cost-effective solutions that show benefit to the business.
A Practical Guide to Security Assessments is a process-focused approach that presents a structured methodology for conducting assessments. The key element of the methodology is an understanding of business goals and processes, and how security measures are aligned with business risks. The guide also emphasizes that resulting security recommendations should be cost-effective and commensurate with the security risk. The methodology described serves as a foundation for building and maintaining an information security program.
In addition to the methodology, the book includes an Appendix that contains questionnaires that can be modified and used to conduct security assessments.
This guide is for security professionals who can immediately apply the methodology on the job, and also benefits management who can use the methodology to better understand information security and identify areas for improvement.
Kairab, Sudhanshu
