چرا مدیران امنیت اطلاعات شکست میخورند: حلقه مفقوده در مدیریت امنیت و راهحل آن (حسابرسی داخلی و حسابرسی IT)
Why CISOs Fail: The Missing Link in Security Management--and How to Fix It (Internal Audit and IT Audit)
معرفی کتاب «چرا مدیران امنیت اطلاعات شکست میخورند: حلقه مفقوده در مدیریت امنیت و راهحل آن (حسابرسی داخلی و حسابرسی IT)» (با عنوان لاتین Why CISOs Fail: The Missing Link in Security Management--and How to Fix It (Internal Audit and IT Audit)) نوشتهٔ Barak Engel، منتشرشده توسط نشر Auerbach Publications;CRC Press در سال 2018. این کتاب در 7 صفحه، فرمت pdf، زبان انگلیسی ارائه شده است.
This book serves as an introduction into the world of security and provides insight into why and how current security management practices fail, resulting in overall dissatisfaction by practitioners and lack of success in the corporate environment. The author examines the reasons and suggests how to fix them. The resulting improvement is highly beneficial to any corporation that chooses to pursue this approach or strategy and from a bottom-line and business operations perspective, not just in technical operations. This book transforms the understanding of the role of the CISO, the selection process for a CISO, and the financial impact that security plays in any organization. Why CISOs Fail: The Missing Link in Security Management-and How to Fix it provides insights as to why and how current security management practices fail at their basic foundation, resulting in overall dissatisfaction by practitioners and lack of success in the corporate environment. The author examines the reasons and how to fix them. The resulting improvement is highly beneficial to any corporation that chooses to pursue this approach or strategy and from a bottom-line and business operations perspective, not just in technical operations. This book transforms the understanding of the role of the CISO, the selection process for a CISO, and the financial impact that security plays in any organization. It also: Provides practitioners with strategies and tools for establishing and maintaining a successful, value-centric internal audit organization, Explores opportunities to gain management support through early wins; methods to systematically identify process improvement opportunities, cost savings and avoidance, and potential revenue recoveries; and tips on marketing and branding the audit organization for maximum impact, Introduces the "Audit Value Factor," a concept to determine the estimated value of a given audit, as well as methods for calculating the return on recommendations made, Outlines Six Sigma methods and techniques to ensure every engagement is value-added, Provides tangible, immediate benefits to the reader through key-takeaway actions and tips. Book jacket "This book provides insight as to why and how current security management practices fail at their basic foundation, resulting in overall dissatisfaction by practitioners and lack of success in the corporate environment. The author examines the reasons and how to fix them. The resulting improvement is highly beneficial to any corporation that chooses to pursue this approach or strategy and from a bottom-line and business operations perspective, not just in technical operations. This book transforms the understanding of the role of the CISO, the selection process for a CISO, and the financial impact that security plays in any organization."--Provided by publisher Cover 1 Half Title 2 Title Page 4 Copyright Page 5 Dedication 6 Contents 8 Foreword 10 Preface 16 Acknowledgments 20 Author 22 Praise for “Why CISOs Fail” 24 Chapter 0: Why? 26 Chapter 1: The Dismal Discipline 32 Chapter 2: The Business of Being CISO 50 Chapter 3: Let It Rain 68 Chapter 4: Don’t Call Me Sue 86 Chapter 5: Comply Oh My 100 Chapter 6: Techs-Mechs 122 Chapter 7: The CISO, Reimagined 142 Index 152 This book examines why and how current security management practices fail at their basic foundation, causing in overall dissatisfaction by practitioners and lack of success in the corporate environment. It changes the understanding of the CISO's role, the selection process for a CISO, and the financial impact that security plays in an organization.
دانلود کتاب چرا مدیران امنیت اطلاعات شکست میخورند: حلقه مفقوده در مدیریت امنیت و راهحل آن (حسابرسی داخلی و حسابرسی IT)