Discover a managerially-focused overview of information security with a thorough presentation of how to most effectively administer it with MANAGEMENT OF INFORMATION SECURITY, 5E. Insightful, engaging content prepares you to become an information security management practitioner able to secure systems and networks in a world where continuously emerging threats, ever-present attacks, and the success of criminals illustrate the weaknesses in current information technologies. You?ll develop both the information security skills and practical experience that organizations are looking for as they strive to ensure more secure computing environments. This edition offers a tightened focus on key executive and managerial aspects of information security while still emphasizing the foundational material to reinforce key concepts. Updated content reflects the most recent developments in the field, including NIST, ISO, and security governance.
UNIT I: Foundations of Information Security.
1. Introduction to Management of Information Security.
2. Compliance: Law and Ethics.
UNIT II: Strategic Information Security Management.
3. Governance and Strategic Planning for Security.
4. Security Policy.
5. Developing the Security Program.
6. Risk Management: Identifying and Assessing Risk.
7. Risk Management: Controlling Risk.
UNIT III: Operational Information Security Management.
8. Security Management Models.
9. Security Management Practices.
10. Planning for Contingencies.
11. Personnel and Security.
12. Protection Mechanisms. Appendix.
