Written by two INFOSEC experts, this book provides a systematic and practical approach for establishing, managing and operating a comprehensive Information Assurance program. It is designed to provide ISSO managers, security managers, and INFOSEC professionals with an understanding of the essential issues required to develop and apply a targeted information security posture to both public and private corporations and government run agencies. 'Information Assurance' explains and defines the theories and processes that will help a company protect its proprietary information including - the need to assess the current level of risk; the need to determine what can impact the risk; the need to determine how risk can be reduced.The authors lay out a detailed strategy for defining information security, establishing IA goals, providing training for security awareness, and conducting airtight incident response to system compromise.
Detalhes do Produto
Subtítulo: MANAGING ORGANIZATIONAL IT SECURITY RISKS