Securing an IT Organization through Governance, Risk Management, and Audit

Book Description

Past events have shed light on the vulnerability of mission-critical computer systems at highly sensitive levels. It has been demonstrated that common hackers can use tools and techniques downloaded from the Internet to attack government and commercial systems. Although threats may come from mischief makers and pranksters, they are more likely to result from hackers working in concert for profit, hackers working under the protection of nation states, or malicious insiders.

Securing an IT through Governance, Risk Management, and Audit

introduces two internationally recognized bodies of knowledge: Control Objectives for Information and Related (COBIT 5) from a cybersecurity perspective and the NIST Framework for Improving Critical Infrastructure Cybersecurity (CSF). Emphasizing the processes directly related to governance, risk management, and audit, the book provides details of a cybersecurity framework (CSF), mapping each of the CSF steps and activities to the methods defined in COBIT 5. This method leverages operational risk understanding in a business context, allowing the information and communications (ICT) organization to convert high-level enterprise goals into manageable, specific goals rather than unintegrated checklist .

The real value of this methodology is to reduce the knowledge fog that frequently engulfs senior business management, and results in the false conclusion that overseeing controls for information systems is not a leadership role or responsibility but a technical management task. By carefully reading, implementing, and practicing the techniques and methodologies outlined in this book, you can successfully implement a plan that increases and lowers risk for you and your organization.

Table of Contents

Chapter 1: Cybersecurity Risk Management
Chapter 2: Introduction to the Framework for Improving Critical Infrastructure Cybersecurity
Chapter 3: Identify Function
Chapter 4: Protect Function
Chapter 5: Detect Function
Chapter 6: Respond Function
Chapter 7: Recover Function
Chapter 8: The COBIT Framework
Chapter 9: Decomposition of Framework
Chapter 10: Framework Structure’s Generic Domains
Chapter 11: Decomposition of COBIT 5
Chapter 12: COBIT Management Guidelines
Chapter 13: COBIT Management Dashboard
Chapter 14: What COBIT Sets Out to Accomplish
Chapter 15: Internal Audits
Chapter 16: Tying It All Together

Book Details

  • Title: Securing an IT Organization through Governance, Risk Management, and Audit
  • Author: ,
  • Length: 396 pages
  • Edition: 1
  • Language: English
  • Publisher:
  • Publication Date: 2016-01-28
  • ISBN-10: 1498737315
  • ISBN-13: 9781498737319
Download LinkFormatSize (MB)Upload Date
Download from ZippyShareTrue PDF3.901/13/2016
Download from ZippyShareTrue PDF3.910/01/2016
How to Download? Report Dead Links & Get a Copy