PDF Ebook Information Security: Design, Implementation, Measurement, and Compliance, by Timothy P. Layton
When more, reading practice will constantly give valuable advantages for you. You could not should invest often times to read the e-book Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton Simply alloted a number of times in our spare or spare times while having dish or in your office to read. This Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton will certainly reveal you brand-new thing that you could do now. It will aid you to enhance the high quality of your life. Occasion it is merely a fun book Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton, you could be happier as well as a lot more fun to appreciate reading.
Information Security: Design, Implementation, Measurement, and Compliance, by Timothy P. Layton
PDF Ebook Information Security: Design, Implementation, Measurement, and Compliance, by Timothy P. Layton
Do you think that reading is an essential task? Discover your reasons adding is very important. Checking out a book Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton is one component of pleasurable tasks that will make your life top quality a lot better. It is not about just just what sort of book Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton you review, it is not just concerning just how several publications you check out, it has to do with the behavior. Reading behavior will be a method to make publication Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton as her or his close friend. It will despite if they spend cash and invest even more books to complete reading, so does this book Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton
Why must be Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton in this site? Get more profits as exactly what we have actually told you. You could find the other alleviates besides the previous one. Relieve of getting guide Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton as what you really want is additionally provided. Why? We offer you lots of sort of the books that will not make you really feel weary. You can download them in the link that we offer. By downloading Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton, you have taken the proper way to pick the simplicity one, compared with the headache one.
The Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton tends to be excellent reading book that is understandable. This is why this book Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton ends up being a favorite book to review. Why don't you desire become one of them? You can appreciate checking out Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton while doing various other tasks. The existence of the soft data of this book Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton is kind of obtaining encounter conveniently. It consists of just how you must conserve guide Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton, not in shelves naturally. You might wait in your computer system tool as well as device.
By conserving Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton in the device, the means you check out will certainly likewise be much less complex. Open it as well as start checking out Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton, straightforward. This is reason that we suggest this Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton in soft documents. It will not disturb your time to get the book. Additionally, the on-line system will certainly likewise reduce you to look Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton it, also without going someplace. If you have link net in your office, residence, or gizmo, you can download Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton it straight. You might not likewise wait to get the book Information Security: Design, Implementation, Measurement, And Compliance, By Timothy P. Layton to send by the seller in other days.
Organizations rely on digital information today more than ever before. Unfortunately, that information is equally sought after by criminals. New security standards and regulations are being implemented to deal with these threats, but they are very broad and organizations require focused guidance to adapt the guidelines to their specific needs.
Fortunately, Information Security: Design, Implementation, Measurement, and Compliance outlines a complete roadmap to successful adaptation and implementation of a security program based on the ISO/IEC 17799:2005 (27002) Code of Practice for Information Security Management. The book first describes a risk assessment model, a detailed risk assessment methodology, and an information security evaluation process. Upon this foundation, the author presents a proposed security baseline for all organizations, an executive summary of the ISO/IEC 17799 standard, and a gap analysis exposing the differences between the recently rescinded version and the newly released version of the standard. Finally, he devotes individual chapters to each of the 11 control areas defined in the standard, covering systematically the 133 controls within the 39 control objectives.
Tim Layton's Information Security is a practical tool to help you understand the ISO/IEC 17799 standard and apply its principles within your organization's unique context.
- Sales Rank: #1034143 in Books
- Brand: Brand: Auerbach Publications
- Published on: 2006-07-20
- Original language: English
- Number of items: 1
- Dimensions: 9.25" h x 6.50" w x .75" l, 1.12 pounds
- Binding: Hardcover
- 264 pages
- Used Book in Good Condition
Review
I have had the pleasure of working with Tim on several large risk assessment projects and I have tremendous respect for his knowledge and experience as an information security practitioner. … Risk assessment is the cornerstone of an effective information security program. … striving to achieve compliance in the absence of a risk-based security strategy can only lead to failure. … Implement an effective risk assessment program and take control of the compliance monster. … This book will help you do just that. I know you will benefit from Tim's guidance on how to get the most from your risk assessment efforts. For today's information security leaders, there is not a topic more important.
-From the Foreword by Gary Geddes, CISSP, Strategic Security Advisor, Microsoft Corporation
Most helpful customer reviews
0 of 0 people found the following review helpful.
Five Stars
By stanley kimani
in good condition
1 of 1 people found the following review helpful.
Provides an in-depth perspective of the ISO/IEC 17799 information security standard
By Ben Rothke
The goal of Information Security: Design, Implementation, Measurement, and Compliance is to provide the reader with an in-depth perspective of the ISO/IEC 17799 information security standard and how to use it to measure an information security program.
As an introduction; ISO/IEC 17799 is an information security standard published and revised in June 2005 by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). It is entitled Information technology - Security techniques - Code of practice for information security management. The current standard is a revision of the version published in 2000, which was an exact copy of the British Standard (BS) 7799-1:1999.
ISO/IEC 17799 provides best practice recommendations on information security management for use by those who are responsible for initiating, implementing or maintaining Information Security Management Systems (ISMS). Information security is defined within the standard in the context of the C-I-A triad (confidentiality, integrity, availability).
At just over 200 pages, the books 17 chapters provides the reader with a densely packed overview of the ISO/IEC 17799 standard. In addition, the book covers the details of how to perform a qualitative-based risk assessment. It provides a methodology on how to assess the various types of risk. The author breaks them out into four different areas, namely: human malicious (sabotage, terrorists, etc.), human non-malicious human error, poor management philosophy, etc.), accidental (airplane crash, telecommunication failure, etc.), and other (natural or other unplanned disruptions or disasters).
As organization place more of their critical data on networks and rely on digital information more than ever before, the need to ensure that the data is adequately protected by the regulations required is equally more important than ever. As an example, had TJX Companies better developed their security posture, they would likely not be facing a myriad law suits. The insecurity of TJX has had a direct negative financial effect.
From a fanatical perspective, the company announced that in the most recent quarter, it took a $12 million loss, equal to 3 cents per share, because of the loss of more than 40 million credit and debit card numbers that were stolen from its systems over an 18-month period, which is one of the largest customer data breaches to date. The $12 million in losses was for costs incurred to investigate and contain the intrusion, improve computer security and systems, and communicate with customers, as well as technical, legal, and other fees. Had TJX used a methodology such as ISO/IEC 17799 to secure their data, it is likely that they would not be in the predicament they are now in.
While geared to a general audience, given the books terse and somewhat dry style, those that already have a background in security and risk management will find the greatest value from the book.
0 of 0 people found the following review helpful.
As a required class text, it fell far short of my needs and expectations
By RS
Tried to use this book as a text for my MBA course. I found the book difficult to use as a reference source. This is not formatted like the paper version, therefore no chance of citing properly due to lack of page numbers. Also, chapter content was inconsistent with chapter titles. For example, turning to chapter 15, the paragraph numbers appeared numbered as 13.x, when I would have expected 15.x paragraph numbering.
All in all I found the book very difficult to use for my intended purpose, and had to turn to other resources frequently.
Information Security: Design, Implementation, Measurement, and Compliance, by Timothy P. Layton PDF
Information Security: Design, Implementation, Measurement, and Compliance, by Timothy P. Layton EPub
Information Security: Design, Implementation, Measurement, and Compliance, by Timothy P. Layton Doc
Information Security: Design, Implementation, Measurement, and Compliance, by Timothy P. Layton iBooks
Information Security: Design, Implementation, Measurement, and Compliance, by Timothy P. Layton rtf
Information Security: Design, Implementation, Measurement, and Compliance, by Timothy P. Layton Mobipocket
Information Security: Design, Implementation, Measurement, and Compliance, by Timothy P. Layton Kindle
Tidak ada komentar:
Posting Komentar