Read more
Informationen zum Autor Caroline Wong was the Chief of Staff for the Global Information Security Team at eBay and built eBay's Security Metrics program from the ground up. She is well known for her expertise in the area of Security Metrics and has been a featured speaker at numerous industry conferences, including RSA, Metricon, the Executive Women's Forum, Archer Summits, and the Information Security Forum. Caroline is on the Program Committee for Metricon 4.5 and was nominated as a Finalist for the "One to Watch" Category at the Executive Women's Forum Women of Influence Awards 2009. She has contributed as a technical reviewer to the Center for Information Security Consensus Metrics Definitions and is actively working with the Cloud Security Alliance to define metrics for the cloud computing space. She has a B.S. in Electrical Engineering and Computer Sciences from U.C. Berkeley, a Certificate in Finance and Accounting from Stanford's Executive Education Program, and is CISSP certified. Klappentext Publisher's Note: Products purchased from Third Party sellers are not guaranteed by the publisher for quality, authenticity, or access to any online entitlements included with the product. Security Smarts for the Self-Guided IT Professional "An extraordinarily thorough and sophisticated explanation of why you need to measure the effectiveness of your security program and how to do it. A must-have for any quality security program!" -Dave Cullinane, CISSP, CISO & VP, Global Fraud, Risk & Security, eBay Learn how to communicate the value of an information security program, enable investment planning and decision making, and drive necessary change to improve the security of your organization. Security Metrics: A Beginner's Guide explains, step by step, how to develop and implement a successful security metrics program. This practical resource covers project management, communication, analytics tools, identifying targets, defining objectives, obtaining stakeholder buy-in, metrics automation, data quality, and resourcing. You'll also get details on cloud-based security metrics and process improvement. Templates, checklists, and examples give you the hands-on help you need to get started right away. Security Metrics: A Beginner's Guide features: Lingo--Common security terms defined so that you're in the know on the jobIMHO--Frank and relevant opinions based on the author's years of industry experienceBudget Note--Tips for getting security technologies and processes into your organization's budgetIn Actual Practice--Exceptions to the rules of security explained in real-world contextsYour Plan--Customizable checklists you can use on the job nowInto Action--Tips on how, why, and when to apply new skills and techniques at work Caroline Wong, CISSP, was formerly the Chief of Staff for the Global Information Security Team at eBay, where she built the security metrics program from the ground up. She has been a featured speaker at RSA, ITWeb Summit, Metricon, the Executive Women's Forum, ISC2, and the Information Security Forum. An easy-to-use security metrics implementation guide for IT professionals facing tight budget constraints Inhaltsverzeichnis Part I: Why Security Metrics Chapter 1 Why Measure Security? Chapter 2 Why Now Security Metrics Are Needed Now Part II: Essential Components of an Effective Security Metrics Practitioner Chapter 3 Analytics Chapter 4 Commitment to Project Management Part III: Decide What to Measure Chapter 5 Identify Core Competencies, Information Security Work, and Resourcing Options Chapter 6 Identify Targets Part IV: Get Started Chapter 7 Defining Project Objectives Chapter 8 Define Your Priorities Chapter 9 Identify Key Messages and Key Audiences Chapter 10 Obtain Buy-In from Stakeholders Part V: Toolkit Chapter 11 Automation Chapter 12 Analysis Techno...
