+612 9045 4394
Risk Management For Computer Security : Protecting Your Network and Information Assets - Andy Jones

Risk Management For Computer Security

Protecting Your Network and Information Assets

Paperback Published: 29th March 2005
ISBN: 9780750677950
Number Of Pages: 296

Share This Book:


or 4 easy payments of $33.31 with Learn more
Ships in 7 to 10 business days

The information systems security (InfoSec) profession remains one of the fastest growing professions in the world today. With the advent of the Internet and its use as a method of conducting business, even more emphasis is being placed on InfoSec. However, there is an expanded field of threats that must be addressed by today's InfoSec and information assurance (IA) professionals.
Operating within a global business environment with elements of a virtual workforce can create problems not experienced in the past. How do you assess the risk to the organization when information can be accessed, remotely, by employees in the field or while they are traveling internationally? How do you assess the risk to employees who are not working on company premises and are often thousands of miles from the office? How do you assess the risk to your organization and its assets when you have offices or facilities in a nation whose government may be supporting the theft of the corporate "crown jewels" in order to assist their own nationally owned or supported corporations? If your risk assessment and management program is to be effective, then these issues must be assessed.
Personnel involved in the risk assessment and management process face a much more complex environment today than they have ever encountered before.
This book covers more than just the fundamental elements that make up a good risk program. It provides an integrated "how to" approach to implementing a corporate program, complete with tested methods and processes; flowcharts; and checklists that can be used by the reader and immediately implemented into a computer and overall corporate security program. The challenges are many and this book will help professionals in meeting their challenges as we progress through the 21st Century.
*Presents material in an engaging, easy-to-follow manner that will appeal to both advanced INFOSEC career professionals and network administrators entering the information security profession
*Addresses the needs of both the individuals who are new to the subject as well as of experienced professionals
*Provides insight into the factors that need to be considered & fully explains the numerous methods, processes & procedures of risk management

An Introduction to Risk Management:
Introduction to the Theories of Risk Management
The Changing Environment
The Art of Managing Risks
The Threat Assessment Process:
Threat Assessment and its Input to Risk Assessment
Threat Assessment Method Example Threat Assessment
Vulnerability Issues:
Operating System Vulnerabilities Application Vulnerabilities
Public Domain or COTS? Connectivity and Dependence
The Risk Process:
What is Risk Assessment?
Risk Analysis
Who is Responsible?
/Tools and Types of Risk Assessment:
Qualitative versus Quantitative
The Policies, Procedures, Plans and Processes of Risk Management
Tools and Techniques
Integrated Risk Management
The Future of the Risk Management
Table of Contents provided by Publisher. All Rights Reserved.

ISBN: 9780750677950
ISBN-10: 0750677953
Audience: Professional
Format: Paperback
Language: English
Number Of Pages: 296
Published: 29th March 2005
Publisher: Elsevier Science & Technology
Country of Publication: GB
Dimensions (cm): 22.9 x 15.2  x 1.85
Weight (kg): 0.46