The Security Risk Assessment Handbook: A Complete Guide for Performing Security Risk Assessments
Autor Douglas Landollen Limba Engleză Hardback – 28 sep 2021
The third edition has expanded coverage of essential topics, such as threat analysis, data gathering, risk analysis, and risk assessment methods, and added coverage of new topics essential for current assessment projects (e.g., cloud security, supply chain management, and security risk assessment methods). This handbook walks you through the process of conducting an effective security assessment, and it provides the tools, methods, and up-to-date understanding you need to select the security measures best suited to your organization.
Trusted to assess security for small companies, leading organizations, and government agencies, including the CIA, NSA, and NATO, Douglas J. Landoll unveils the little-known tips, tricks, and techniques used by savvy security professionals in the field. It includes features on how to
- Better negotiate the scope and rigor of security assessments
- Effectively interface with security assessment teams
- Gain an improved understanding of final report recommendations
- Deliver insightful comments on draft reports
Toate formatele și edițiile | Preț | Express |
---|---|---|
Paperback (1) | 399.67 lei 22-36 zile | +33.16 lei 5-11 zile |
CRC Press – 28 sep 2021 | 399.67 lei 22-36 zile | +33.16 lei 5-11 zile |
Hardback (1) | 989.33 lei 43-57 zile | |
CRC Press – 28 sep 2021 | 989.33 lei 43-57 zile |
Preț: 989.33 lei
Preț vechi: 1236.67 lei
-20% Nou
Puncte Express: 1484
Preț estimativ în valută:
189.34€ • 196.67$ • 157.27£
189.34€ • 196.67$ • 157.27£
Carte tipărită la comandă
Livrare economică 03-17 februarie 25
Preluare comenzi: 021 569.72.76
Specificații
ISBN-13: 9780367547479
ISBN-10: 0367547473
Pagini: 512
Ilustrații: N/A; 90 Line drawings, black and white; 3 Halftones, black and white; 162 Tables, black and white; 93 Illustrations, black and white
Dimensiuni: 178 x 254 x 29 mm
Greutate: 1.04 kg
Ediția:Nouă
Editura: CRC Press
Colecția CRC Press
ISBN-10: 0367547473
Pagini: 512
Ilustrații: N/A; 90 Line drawings, black and white; 3 Halftones, black and white; 162 Tables, black and white; 93 Illustrations, black and white
Dimensiuni: 178 x 254 x 29 mm
Greutate: 1.04 kg
Ediția:Nouă
Editura: CRC Press
Colecția CRC Press
Public țintă
Academic, Professional, and Professional Practice & DevelopmentCuprins
Foreword 1. Introduction 2. Information Security Risk Assessment Basics 3. Project Definition 4. Security Risk Assessment Preparation 5. Data Gathering 6. Administrative Data Gathering 7. Technical Data Gathering 8. Physical Data Gathering 9. Security Risk Analysis 10. Security Risk Mitigation 11. Security Risk Assessment Reporting 12. Security Risk Assessment Project Management 13. Cloud Security Risk Assessment 14. Vendor Security Risk Assessment 15. Very small and very large assessments 16. Security Risk Assessment Approaches Appendix. Relevant Standards and Regulations
Notă biografică
Douglas Landoll has over two decades of information security experience. He has led security risk assessments and established security programs for top corporations and government agencies. He is an expert in security risk assessment, security risk management, security criteria, and building corporate security programs. His background includes evaluating security at the National Security Agency (NSA), North Atlantic Treaty Organization (NATO), Central Intelligence Agency (CIA), and other government agencies; co-founding the Arca Common Criteria Testing Laboratory, co-authoring the systems security engineering capability maturity model (SSE-CMM); teaching at NSA’s National Cryptologic School; and running the southwest security services division for Exodus Communications. Doug is currently the CEO of Lantego, specializing in risk assessment, policy and training. He is a certified information systems security professional (CISSP) and certified information systems auditor (CISA). He holds a BS degree from James Madison University and an MBA from the University of Texas at Austin. He has published numerous information security articles, speaks regularly at conferences, and serves as an advisor for several high-tech companies.
Descriere
The third edition has expended coverage essential topics such as threat analysis, data gathering, risk analysis, and risk assessment methods and added coverage of new topics essential for current assessment projects (e.g., cloud security, supply chain management, security risk assessment methods).