Information security governance and management : framework and toolset for CISOs and decision makers
معرفی کتاب «Information security governance and management : framework and toolset for CISOs and decision makers» نوشتهٔ Grey Huffington و Andrej Volchkov، منتشرشده توسط نشر Auerbach Publications در سال 2019. این کتاب در فرمت pdf، زبان انگلیسی ارائه شده است.
This book presents a framework to model the main activities of information security management and governance. The same model can be used for any security sub-domain such as cybersecurity, data protection, access rights management, business continuity, etc. Cover; Half Title; Title; Copyright Page; Dedication; Contents; About the Author; Introduction; Chapter 1: Security Governance; 1.1 Information Security Is Important for Business; 1.2 Information Security Governance; 1.3 Information Security Management; 1.4 Using Security Standards; 1.5 Conclusion; Chapter 2: Security Governance Control Framework; 2.1 Three-Level Control Framework; 2.2 Strategic Level; 2.3 Tactical Level; 2.4 Operational Level; 2.5 Main Functions of the Model Building Blocks; 2.5.1 Strategy; 2.5.2 Policies; 2.5.3 Organization; 2.5.4 Risk Management; 2.5.5 Program Management Introduction. 1. Governance and Management. 2. Control Framework. 3. Using the Control Framework. 4. Strategy. 5. Policy and Guidelines. 6. Organization. 7. Risk Management. 8. Security Program Management. 9. Reporting. 10. Asset Inventory. 11. Compliance. 12. Metrics and KPI. Presenting tools and examples allowing the various managers to take on their roles, this book presents a framework to model the main activities of information security management and governance. -- Edited summary from book
دانلود کتاب Information security governance and management : framework and toolset for CISOs and decision makers