Security Risk Management: Building an Information Security Risk Management P
Product ID: 412222285
Buy anything from 5,000+ international stores. One checkout price. No surprise fees. Join 2M+ shoppers on Desertcart.
Desertcart purchases this item on your behalf and handles shipping, customs, and support to British Virgin Islands.
Security Risk Management is the definitive guide for building or running an information security risk management program. This book teaches practical techniques that will be used on a daily basis, while also explaining the fundamentals so students understand the rationale behind these practices. It explains how to perform risk assessments for new IT projects, how to efficiently manage daily risk activities, and how to qualify the current risk level for presentation to executive level management. While other books focus entirely on risk analysis methods, this is the first comprehensive text for managing security risks. This book will help you to break free from the so-called best practices argument by articulating risk exposures in business terms. It includes case studies to provide hands-on experience using risk assessment tools to calculate the costs and benefits of any security investment. It explores each phase of the risk management lifecycle, focusing on policies and assessment processes that should be used to properly assess and mitigate risk. It also presents a roadmap for designing and implementing a security risk management program. This book will be a valuable resource for CISOs, security managers, IT managers, security consultants, IT auditors, security analysts, and students enrolled in information security/assurance college programs. Review: One of the best short books without doubt. - This is one of the best books on security I've ever read. Highly recommended for new and experienced practitioners. Review: Great book! - Great book, great read. Bridges some learning gaps in security risk management. Definitely looking to apply these study areas at my new job. Unfortunately, the (brand new) book cover itself was a little bit bent. Other than that, I highly recommend this!
| Customer Reviews | 4.7 out of 5 stars 74 Reviews |
L**A
One of the best short books without doubt.
This is one of the best books on security I've ever read. Highly recommended for new and experienced practitioners.
J**E
Great book!
Great book, great read. Bridges some learning gaps in security risk management. Definitely looking to apply these study areas at my new job. Unfortunately, the (brand new) book cover itself was a little bit bent. Other than that, I highly recommend this!
B**N
An approachable, well-thought out textbook and reference guide for infosec risk management
This book is an excellent and practical introduction to information security risk management. Wheeler starts off with overviews of basic concepts, like how to define and understand risk and its components, breaks down common pitfalls of infosec (like ignoring business needs), and launches into a usable, approachable structure that you can use to asses and deal with risk in your network or organization. The book is full of case studies and security "deep dives" where concepts introduced in the previous chapter are used in real world situations. The writing is clear and refreshingly informal, and the lessons in the book can be put into practice immediately at your organization. Wheeler even includes four chapters at the end of book that introduce a practical approach to creating a formal and effective risk management system in organizations that lack one. Overall, well written, doesn't require you to have experience in info to understand it, and useful.
G**Y
Fresh Thinking, Valuable To All Practitioners
Finally some sensible thinking about security and risk. As a practitioner there is huge need for fresh thinking in the IT security field. Where we are right now is just not effective or even manageable. This is a good place to start for a new or reemphasized approach. We currently have the cart before the horse. Or maybe a cart with no horse at all. Everything begins and ends with risk, and not with the newest flashy security tool.
S**E
Bien recu
Acheter dans le cadre d’un cours sur la cyber sécurité mais le prof indique que ce n’était si nécessaire de l’acheter donc je le garde pareil pour ma bibliothèque.
Trustpilot
1 week ago
2 months ago