Jason Andress, Jason (CISSP Andress, David Guretz, Mark Leary, Mark (CISSP Leary - Building a Practical Information Security Program

Write the first review!

Sold out

Jason Andress, Jason (CISSP Andress, David Guretz, Mark Leary, Mark (CISSP Leary

Building a Practical Information Security Program

English · Paperback / Softback

Description

Read more

Building a Practical Information Security Program provides users with a strategic view on how to build an information security program that aligns with business objectives. The information provided enables both executive management and IT managers not only to validate existing security programs, but also to build new business-driven security programs. In addition, the subject matter supports aspiring security engineers to forge a career path to successfully manage a security program, thereby adding value and reducing risk to the business. Readers learn how to translate technical challenges into business requirements, understand when to "go big or go home," explore in-depth defense strategies, and review tactics on when to absorb risks. This book explains how to properly plan and implement an infosec program based on business strategy and results.


  • Provides a roadmap on how to build a security program that will protect companies from intrusion
  • Shows how to focus the security program on its essential mission and move past FUD (fear, uncertainty, and doubt) to provide business value
  • Teaches how to build consensus with an effective business-focused program

List of contents

Why We Need Security Programs
Develop a Security Strategy
Integrate Security into the Organization
Establish a Security Organization
Develop a Security Policy
Manage the Risks
Protect the Data
Manage the Security of Third Parties and Vendors
Conduct Security Awareness and Training
Develop Metrics to Measure Program Effectiveness

About the author

David Guretz (CISM, CISSP) is an experienced information security professional with over 15 years of information security experience and twenty-plus years in information technology. He has held security leadership roles at companies in the financial (Bank One, Jump Trading), telecommunications (AT&T), legal (Kirkland & Ellis), and insurance (Allstate, The Warrantly Group) industries. Recently he has converted over to the security product vendor side to provide better solutions for today's information security risks.He currently is the Director of Product Strategy for Verdasys, who produce the popular Digital Guardian data-centric, risk-based data loss prevention product line.

Product details

Authors Jason Andress, Jason (CISSP Andress, David Guretz, Mark Leary, Mark (CISSP Leary
Publisher Syngress
 
Languages English
Product format Paperback / Softback
Released 04.11.2016
 
EAN 9780128020425
ISBN 978-0-12-802042-5
No. of pages 202
Dimensions 186 mm x 10 mm x 232 mm
Weight 446 g
Subject Natural sciences, medicine, IT, technology > IT, data processing > IT

Customer reviews

No reviews have been written for this item yet. Write the first review and be helpful to other users when they decide on a purchase.

Write a review

Thumbs up or thumbs down? Write your own review.

For messages to CeDe.ch please use the contact form.

The input fields marked * are obligatory

By submitting this form you agree to our data privacy statement.