Summary: The goal of Security Risk Management is to teach you practical techniques that will be used on a daily basis, while also explaining the fundamentals so you understand the rationale behind these practices. Security professionals often fall into the trap of telling the business that they need to fix something, but they can't explain why. This book will help you to break free from the so-called "best practices" argument by articulating risk exposures in business terms. You will learn techniques for how to perform risk assessments for new IT projects, how to efficiently manage daily risk activities, and how to qualify the current risk level for presentation to executive level management. While other books focus entirely on risk analysis methods, this is the first comprehensive guide for managing security risks. Includes case studies to provide hands-on experience using risk assessment tools to calculate the costs and benefits of any security investment. Explores each phase of the risk management lifecycle, focusing on policies and assessment processes that should be used to properly assess and mitigate risk. Presents a roadmap for designing and implementing a security risk management program.

No physical items for this record

Enhanced descriptions from Syndetics:

Security Risk Management is the definitive guide for building or running an information security risk management program. This book teaches practical techniques that will be used on a daily basis, while also explaining the fundamentals so students understand the rationale behind these practices. It explains how to perform risk assessments for new IT projects, how to efficiently manage daily risk activities, and how to qualify the current risk level for presentation to executive level management. While other books focus entirely on risk analysis methods, this is the first comprehensive text for managing security risks.

This book will help you to break free from the so-called best practices argument by articulating risk exposures in business terms. It includes case studies to provide hands-on experience using risk assessment tools to calculate the costs and benefits of any security investment. It explores each phase of the risk management lifecycle, focusing on policies and assessment processes that should be used to properly assess and mitigate risk. It also presents a roadmap for designing and implementing a security risk management program.

This book will be a valuable resource for CISOs, security managers, IT managers, security consultants, IT auditors, security analysts, and students enrolled in information security/assurance college programs.

Includes bibliographical references and index.

Introduction to Risk Management -- Risk Assessment and Analysis Techniques -- Building and Running a Risk Management Program.

The goal of Security Risk Management is to teach you practical techniques that will be used on a daily basis, while also explaining the fundamentals so you understand the rationale behind these practices. Security professionals often fall into the trap of telling the business that they need to fix something, but they can't explain why. This book will help you to break free from the so-called "best practices" argument by articulating risk exposures in business terms. You will learn techniques for how to perform risk assessments for new IT projects, how to efficiently manage daily risk activities, and how to qualify the current risk level for presentation to executive level management. While other books focus entirely on risk analysis methods, this is the first comprehensive guide for managing security risks. Includes case studies to provide hands-on experience using risk assessment tools to calculate the costs and benefits of any security investment. Explores each phase of the risk management lifecycle, focusing on policies and assessment processes that should be used to properly assess and mitigate risk. Presents a roadmap for designing and implementing a security risk management program.

Electronic reproduction. Amsterdam : Elsevier Science & Technology, 2011. Mode of access: World Wide Web. System requirements: Web browser. Title from title screen (viewed on May 10, 2011). Access may be restricted to users at subscribing institutions.

Table of contents provided by Syndetics

Part I Introduction to Risk Management
Chapter 1 The Security Evolution
Chapter 2 Risky Business
Chapter 3 The Risk Management Lifecycle
Chapter 4 Risk Profiling
Part II Risk Assessment and Analysis Techniques
Chapter 5 Formulating a Risk
Chapter 6 Risk Exposure Factors
Chapter 7 Security Controls and Services
Chapter 8 Risk Evaluation and Mitigation Strategies
Chapter 9 Reports and Consulting
Chapter 10 Risk Assessment Techniques
Part III Building and Running a Risk Management Program
Chapter 11 Threat and Vulnerability Management
Chapter 12 Security Risk Reviews
Chapter 13 A Blueprint for Security
Chapter 14 Building a Program from Scratch
Appendix A Security Risk Profile
Appendix B Risk Models and Scales
Appendix C Architectural Risk Analysis
Reference
Tables

Author notes provided by Syndetics

Evan Wheeler currently is a Director of Information Security for Omgeo (A DTCC | Thomson Reuters Company), an instructor at both Clark and Northeastern Universities, and the author of the Information Security Risk Management course for the SANS Institute. Previously he spent six years as a Security Consultant for the U.S. Department of Defense.

Back to results

1 Bojack Horseman: A Narrative and Structuralist Investigation: An animated series that challanges the assumptions of its genre with its relevance to sociological issues.
by Cuddy, Brid.
2 The legacy of German Expressionism and its influence on the films of Tim Burton.
by Dalton, Tracy.
3 Frozen's Face to Face: This visual expression of good and evil examined through character design using Elsa from Disney's Frozen (2013) as a case study.
by Fleming, Rachel.
4 A Study of Pine Barrens from The Sopranos from the Perspective of Culture and Pastiche.
by Mahon, Cian.
5 Is Anime a fading form of Film? An investigation into the Cultural Economical affects on the Aesthetic quality of Japanese animation
by Mannix, Stephen J.
6 Hyper-Feminine Heroines and Femmes Fatales: An Analysis of Feminity and Power in Disney's Tangled.
by McGing, Naomi.
7 Finding Horror in the work of Louise Bourgeois.
by Nolan, Sarah.
8 The Designer as Producer: A study of Dave Konopka and the Album Artwork for Battles.
by O'Brien, Willie.
9 A Jungian Psychoanalysis of Persona 4 Golden and Video Game Character Development.
by Singer, Paul
10 A Study of Contemporary Culture through Fairytales: An Investigation into Narrative and Structuralist Theory to analyse Contemporary Culture through storytelling.
by Smyth, Mary.
11 A Discussion on Deleuzian Theory through an Analysis of New Media Art.
by Wynne, Jonathan.
12 The Department of Education and its Economic Agenda as associated with the well-being of the student.
by Sheahan, Jack.
13 An analysis of energy supplier television advertisements within urban Irish and English cultures.
by Bowler, Jack.
14 A discussion of Pixar's 'Inside out' and the relationship it has with gender construction.
by Carroll, Neasa.
15 Can we cross the 'Uncanny Valley'? - An investigation into the photorealistic representation of humans using computer generated imagery.
by Clancy, Pat.
16 A discussion of the Leaving Certificate Art curriculum in Ireland.
by Connaughton, Colm.
17 A multimodal analysis of the dynamics of persuasive communication in the McDonald's animated advertisement 'Arch Enemies' 2015.
by McCaffrey, Eoin.
18 An investigation into the effects of self-objectification through social networking sites on attitudes towards breastfeeding in western culture.
by McNulty, Jessica.
19 Global warming and ecological issues in Animated film.
by O'Connor, Eamonn.