Cantitate/Preț
Produs

Supply Chain Risk Management: Applying Secure Acquisition Principles to Ensure a Trusted Technology Product: Security, Audit and Leadership Series

Autor Ken Sigler, Dan Shoemaker, Anne Kohnke
en Limba Engleză Hardback – 7 noi 2017
The book presents the concepts of ICT supply chain risk management from the perspective of NIST IR 800-161. It covers how to create a verifiable audit-based control structure to ensure comprehensive security for acquired products. It explains how to establish systematic control over the supply chain and how to build auditable trust into the products and services acquired by the organization. It details a capability maturity development process that will install an increasingly competent process and an attendant set of activities and tasks within the technology acquisition process. It defines a complete and correct set of processes, activities, tasks and monitoring and reporting systems.
Citește tot Restrânge

Din seria Security, Audit and Leadership Series

Preț: 81171 lei

Preț vechi: 118218 lei
-31% Nou

Puncte Express: 1218

Preț estimativ în valută:
15535 16156$ 129100£

Carte tipărită la comandă

Livrare economică 15-29 martie

Preluare comenzi: 021 569.72.76

Specificații

ISBN-13: 9781138197350
ISBN-10: 1138197351
Pagini: 302
Dimensiuni: 156 x 234 x 25 mm
Greutate: 0.54 kg
Ediția:1
Editura: CRC Press
Colecția Auerbach Publications
Seria Security, Audit and Leadership Series


Public țintă

Academic, Professional, and Professional Practice & Development

Cuprins

What Product Risk Is and Why It Needs to be Managed. The Three Constituencies of Product Trust. Building a Standard Acquisition Infrastructure. Risk Management in the ICT Product Chain. Control Formulation and Implementation. Control Sustainment and Operational Assurance. A Capability Maturity Model for Secure Product Acquisition.

Descriere

The book presents the concepts of ICT supply chain risk management from the perspective of NIST IR 800-161. It defines a complete and correct set of processes, activities, tasks and monitoring and reporting systems.