وبلاگ بلیان

Pragmatic security metrics : applying metametrics to information security

جلد کتاب Pragmatic security metrics : applying metametrics to information security

معرفی کتاب «Pragmatic security metrics : applying metametrics to information security» نوشتهٔ W. Krag Brotby, Gary Hinson، منتشرشده توسط نشر Auerbach Publications در سال 2013. این کتاب در فرمت pdf، زبان انگلیسی ارائه شده است.

Other books on information security metrics discuss number theory and statistics in academic terms. Light on mathematics and heavy on utility, **PRAGMATIC Security Metrics: Applying Metametrics to Information Security** breaks the mold. This is the ultimate how-to-do-it guide for security metrics.Packed with time-saving tips, the book offers easy-to-follow guidance for those struggling with security metrics. Step by step, it clearly explains how to specify, develop, use, and maintain an __information security measurement system__(a comprehensive suite of metrics) to help: * Security professionals systematically improve information security, demonstrate the value they are adding, and gain management support for the things that need to be done * Management address previously unsolvable problems rationally, making critical decisions such as resource allocation and prioritization of security relative to other business activities * Stakeholders, both within and outside the organization, be assured that information security is being competently managed The PRAGMATIC approach lets you home-in on your problem areas and identify the few metrics that will generate real business value. The book: * Helps you figure out exactly __what__ needs to be measured, __how__ to measure it, and most importantly, __why__ it needs to be measured * Describes, scores and ranks more than 150 potential security metrics to demonstrate the value of the PRAGMATIC method * Highlights security metrics that are widely used and recommended, yet turn out to be rather poor in practice * Describes innovative and flexible measurement approaches such as maturity metrics with continuous scales * Explains how to minimize both measurement and security risks using complementary metrics for greater assurance in critical areas such as governance and compliance In addition to its obvious utility in the information security realm, the PRAGMATIC approach, introduced for the first time in this book, has broader application across diverse fields of management including finance, human resources, engineering, and production--in fact any area that suffers a surplus of data but a deficit of useful information. Visit SecurityMetametrics.com supporting the global community of professionals adopting the innovative techniques laid out in __PRAGMATIC Security Metrics.__ If you, too, are struggling to make much sense of security metrics, or searching for better metrics to manage and improve information security, Security Metametrics is the place for you. Other books on information security metrics discuss number theory and statistics in academic terms. Light on mathematics and heavy on utility, PRAGMATIC Security Metrics: Applying Metametrics to Information Security breaks the mold. This is the ultimate how-to-do-it guide for security metrics. Packed with time-saving tips, the book offers easy-to-follow guidance for those struggling with security metrics. Step by step, it clearly explains how to specify, develop, use, and maintain an information security measurement system (a comprehensive suite of metrics) to help: Security professionals systematically improve information security, demonstrate the value they are adding, and gain management support for the things that need to be done Management address previously unsolvable problems rationally, making critical decisions such as resource allocation and prioritization of security relative to other business activities Stakeholders, both within and outside the organization, be assured that information security is being competently managed The PRAGMATIC approach lets you home-in on your problem areas and identify the few metrics that will generate real business value. The book: Helps you figure out exactly what needs to be measured, how to measure it, and most importantly, why it needs to be measured Describes, scores and ranks more than 150 potential security metrics to demonstrate the value of the PRAGMATIC method Highlights security metrics that are widely used and recommended, yet turn out to be rather poor in practice Describes innovative and flexible measurement approaches such as maturity metrics with continuous scales Explains how to minimize both measurement and security risks using complementary metrics for greater assurance in critical areas such as governance and compliance In addition to its obvious utility in the information security realm, the PRAGMATIC approach, introduced for the first time in this book, has broader application across diverse fields of management including finance, human resources, engineering, and production--in fact any area that suffers a surplus of data but a deficit of useful information. Visit SecurityMetametrics.com supporting the global community of professionals adopting the innovative techniques laid out in PRAGMATIC Security Metrics. If you, too, are struggling to make much sense of security metrics, or searching for better metrics to manage and improve information security, Security Metametrics is the place for you. Covering information security metrics, this book provides practical advice on how to specify, develop, use, and maintain a more meaningful and useful system of metrics. It provides guidance on using metrics to identify problem areas and drive security improvements. With a focus on measurement, the author discusses metrics that support an information security management system that complies with ISO/IEC 27001. The text introduces capability maturity metrics that can be used to measure and drive continuous improvement in information security. It also introduces the PRAGMATIC mnemonic to help practitioners choose better metrics W. Krag Brotby And Gary Hinson ; Preface By M.e. Kabay. An Auerbach Book. Includes Bibliographical References (p. 483-485).
دانلود کتاب Pragmatic security metrics : applying metametrics to information security