Managing Risk and Information Security: Protect to Enable, 2nd Edition Front Cover

Managing Risk and Information Security: Protect to Enable, 2nd Edition

by
  • Length: 186 pages
  • Edition: 2nd ed.
  • Publisher:
  • Publication Date: 2016-08-11
  • ISBN-10: 1484214560
  • ISBN-13: 9781484214565
  • Sales Rank: #511340 (See Top 100 Books)
0
0 ratings
Print Book Look Inside
Description

This updated version describes, at a high level, the evolving enterprise security landscape and provides guidance for a management-level audience about how to manage and survive risk. While based primarily on the author’s experience and insights at major companies where he has served as CISO and CSPO, the book also includes many examples from other well-known companies.

Managing Risk and Information Security provides thought leadership in the increasingly important area of enterprise information risk and security. It describes the changing risk environment and why a fresh approach to information security is needed. Because almost every aspect of an enterprise is now dependent on technology not only for internal operations but increasing as a part of product or service creation, the focus of IT security must shift from locking down assets to enabling the business while managing and surviving risk.

This edition discusses business risk from a broader perspective, including privacy and regulatory considerations. It describes the increasing number of threats and vulnerabilities and offers strategies for developing solutions. These include discussions of how enterprises can take advantage of new and emerging technologies―such as social media and the huge proliferation of Internet-enabled devices―while minimizing risk.

What You’ll Learn

  • Learn how enterprise risk and security requirements are changing, and why a new approach to risk and security management is needed
  • Learn how people perceive risk and the effects it has on information security
  • Learn why different perceptions of risk within an organization matters, and why it is necessary to understand and reconcile these views
  • Learn the principles of enterprise information security governance and decision-making, and the other groups they need to need to work with
  • Learn the impact of new technologies on information security, and gain insights into how to safely enable the use of new technologies

Who This Book Is For

The primary audience is CIOs and other IT leaders, CISOs and other information security leaders, IT auditors, and other leaders of corporate governance and risk functions. The secondary audience is CEOs, board members, privacy professionals, and less senior-level information security and risk professionals.

“Harkins’ logical, methodical approach as a CISO to solving the most complex cybersecurity problems is reflected in the lucid style of this book. His enlightened approach to intelligence-based security infrastructure and risk mitigation is our best path forward if we are ever to realize the vast potential of the innovative digital world we are creating while reducing the threats to manageable levels. The author shines a light on that path in a comprehensive yet very readable way.” ―Art Coviello, Former CEO and Executive Chairman, RSA

Table of Contents

Chapter 1: Introduction
Chapter 2: The Misperception of Risk
Chapter 3: Governance and Internal Partnerships: How to Sense, Interpret, and Act on Risk
Chapter 4: External Partnerships: The Power of Sharing Information
Chapter 5: People Are the Perimeter
Chapter 6: Emerging Threats and Vulnerabilities: Reality and Rhetoric
Chapter 7: A New Security Architecture to Improve Business Agility
Chapter 8: Looking to the Future: Emerging Security Capabilities
Chapter 9: Corporate Social Responsibility: The Ethics of Managing Information Risk
Chapter 10: The 21st Century CISO
Chapter 11: Performance Coaching

Free ChaptersTry Audible and Get Two Free Audiobooks »
To access the link, solve the captcha.
Recommended BooksMore Similar Books »
The Software Engineer's Guidebook: Navigating senior, tech lead, and staff engineer positions at tech companies and startups Cover
The Software Engineer's Guidebook: Navigating senior, tech lead, and staff engineer positions at tech companies and startups
2023-11-03
157
SQL for Data Analysis: Harnessing the Power of SQL for Insightful Data Exploration Cover
SQL for Data Analysis: Harnessing the Power of SQL for Insightful Data Exploration
2024-03-23
0
Domain-Specific Computer Architectures for Emerging Applications: Machine Learning and Neural Networks Cover
Domain-Specific Computer Architectures for Emerging Applications: Machine Learning and Neural Networks
2024-06-04
0
Ultimate Ember.js for Web App Development: Leverage Convention Over Configuration Paradigm to Develop, Build, and Deploy Complex Applications Using Ember.js (English Edition) Cover
Ultimate Ember.js for Web App Development: Leverage Convention Over Configuration Paradigm to Develop, Build, and Deploy Complex Applications Using Ember.js (English Edition)
2024-03-13
0
Artificial Intelligence With Microsoft Power Bi: Simpler Ai for the Enterprise Cover
Artificial Intelligence With Microsoft Power Bi: Simpler Ai for the Enterprise
2024-05-14
0
Microsoft 365 Security and Compliance for Administrators: A definitive guide to planning, implementing, and maintaining Microsoft 365 security posture Cover
Microsoft 365 Security and Compliance for Administrators: A definitive guide to planning, implementing, and maintaining Microsoft 365 security posture
2024-03-29
0
The OSINT Handbook: A practical guide to gathering and analyzing online information Cover
The OSINT Handbook: A practical guide to gathering and analyzing online information
2024-03-29
0
Artificial Intelligence for Robotics - Second Edition: Build intelligent robots using ROS 2, Python, OpenCV, and AI/ML techniques for real-world tasks Cover
Artificial Intelligence for Robotics - Second Edition: Build intelligent robots using ROS 2, Python, OpenCV, and AI/ML techniques for real-world tasks
2024-03-29
0
Subscribe
Categories