Managing risk and information security protect to enable

Managing risk and information security protect to enable

Weitere Versionen anzeigen (3)

Managing Risk and Information Security: Protect to Enable, an ApressOpen title, describes the changing risk environment and why a fresh approach to information security is needed. Because almost every aspect of an enterprise is now dependent on technology, the focus of IT security must shift from lo...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
1. Verfasser: Harkins, Malcolm (VerfasserIn)
Format: Elektronisch E-Book
Sprache:English
Veröffentlicht: [New York] Apress 2013
[New York] Distributed to the Book trade worldwide by Springer Science+Business Media 2013
Schriftenreihe:The expert's voice in information technology
Schlagworte:
Computer security
Electronic information resources > Access control
Computer Security
Computers
Sécurité informatique
Sources d'information électroniques ; Accès ; Contrôle
Ordinateurs
computers
Computer science
Computers / Computer Engineering
Electronic information resources ; Access control
Online-Zugang:lizenzpflichtig
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!

MARC

LEADER 00000cam a22000002 4500
001 ZDB-30-ORH-047574968
003 DE-627-1
005 20240228115139.0
007 cr uuu---uuuuu
008 191023s2013 xx |||||o 00| ||eng c
020 |a 9781430251149  |c electronic bk.  |9 978-1-4302-5114-9 
020 |a 143025114X  |c electronic bk.  |9 1-4302-5114-X 
020 |a 1430251131  |9 1-4302-5113-1 
020 |a 9781430251132  |9 978-1-4302-5113-2 
020 |a 9781430251132  |9 978-1-4302-5113-2 
035 |a (DE-627-1)047574968 
035 |a (DE-599)KEP047574968 
035 |a (ORHE)9781430251132 
035 |a (DE-627-1)047574968 
040 |a DE-627  |b ger  |c DE-627  |e rda 
041 |a eng 
072 7 |a UT  |2 bicssc 
072 7 |a COM069000  |2 bisacsh 
072 7 |a COM032000  |2 bisacsh 
082 0 |a 005.8  |2 23 
100 1 |a Harkins, Malcolm  |e VerfasserIn  |4 aut 
245 1 0 |a Managing risk and information security  |b protect to enable  |c Malcolm Harkins 
264 1 |a [New York]  |b Apress  |c 2013 
264 1 |a [New York]  |b Distributed to the Book trade worldwide by Springer Science+Business Media  |c 2013 
300 |a 1 online resource (1 volume)  |b illustrations 
336 |a Text  |b txt  |2 rdacontent 
337 |a Computermedien  |b c  |2 rdamedia 
338 |a Online-Ressource  |b cr  |2 rdacarrier 
490 0 |a The expert's voice in information technology 
500 |a Includes bibliographical references and index. - Online resource; title from PDF title page (Safari, viewed February 1, 2013) 
506 |a Open Access. 
520 |a Managing Risk and Information Security: Protect to Enable, an ApressOpen title, describes the changing risk environment and why a fresh approach to information security is needed. Because almost every aspect of an enterprise is now dependent on technology, the focus of IT security must shift from locking down assets to enabling the business while managing and surviving risk. This compact book discusses business risk from a broader perspective, including privacy and regulatory considerations. It describes the increasing number of threats and vulnerabilities, but also offers strategies for developing solutions. These include discussions of how enterprises can take advantage of new and emerging technologies - such as social media and the huge proliferation of Internet-enabled devices - while minimizing risk. With ApressOpen, content is freely available through multiple online distribution channels and electronic formats with the goal of disseminating professionally edited and technically reviewed content to the worldwide community. Here are some of the responses from reviewers of this exceptional work: "Managing Risk and Information Security is a perceptive, balanced, and often thought-provoking exploration of evolving information risk and security challenges within a business context.? Harkins clearly connects the needed, but often-overlooked linkage and dialog between the business and technical worlds and offers actionable strategies.?? The book contains eye-opening security insights that are easily understood, even by the curious layman." Fred Wettling, Bechtel Fellow, IS & T Ethics & Compliance Officer, Bechtel?? "As disruptive technology innovations and escalating cyber threats continue to create enormous information security challenges, Managing Risk and Information Security: Protect to Enable provides a much-needed perspective. This book compels information security professionals to think differently about concepts of risk management in order to be more effective. The specific and practical guidance offers a fast-track formula for developing information security strategies which are lock-step with business priorities." Laura Robinson, Principal, Robinson Insight Chair, Security for Business Innovation Council (SBIC) Program Director, Executive Security Action Forum (ESAF) "The mandate of the information security function is being completely rewritten. Unfortunately most heads of security haven't picked up on the change, impeding their companies' agility and ability to innovate. This book makes the case for why security needs to change, and shows how to get started. It will be regarded as marking the turning point in information security for years to come." Dr. Jeremy Bergsman, Practice Manager, CEB?? "The world we are responsible to protect is changing dramatically and at an accelerating pace. Technology is pervasive in virtually every aspect of our lives. Clouds, virtualization and mobile are redefining computing - and they are just the beginning of what is to come. Your security perimeter is defined by wherever your information and people happen to be. We are attacked by professional adversaries who are better funded than we will ever be. We in the information security profession must change as dramatically as the environment we protect. We need new skills and new strategies to do our jobs effectively. We literally need to change the way we think.? Written by one of the best in the business, Managing Risk and Information Security challenges traditional security theory with clear examples of the need for change. It also provides expert advice on how to dramatically increase the success of your security strategy and methods - from dealing with the misperception of risk to how to become a Z-shaped CISO.? Managing Risk and Information Security is the ultimate treatise on how to deliver effective security to the world we live in for the next 10 years. It is absolute must reading for anyone in our profession - and should be on the desk of every CISO in the world."? Dave Cullinane, CISSP CEO Security Starfish, LLC "In this overview, Malcolm Harkins delivers an insightful survey of the trends, threats, and tactics shaping information risk and security. From regulatory compliance to psychology to the changing threat context, this work provides a compelling introduction to an important topic and trains helpful attention on the effects of changing technology and management practices." Dr. Mariano-Florentino Cuľlar Professor, Stanford Law School Co-Director, Stanford Center for International Security and Cooperation (CISAC), Stanford University?? "Malcolm Harkins gets it. In his new book Malcolm outlines the major forces changing the information security risk landscape from a big picture perspective, and then goes on to offer effective methods of managing that risk from a practitioner's viewpoint. The combination makes this book unique and a must read for anyone interested in IT risk." Dennis Devlin AVP, Information Security and Compliance, The George Washington University?? "Managing Risk and Information Security is the first-to-read, must-read book on information security for C-Suite executives.? It is accessible, understandable and actionable. No sky-is-falling scare tactics, no techno-babble - just straight talk about a critically important subject. There is no better primer on the economics, ergonomics and psycho-behaviourals of security than this." Thornton May, Futurist, Executive Director & Dean, IT Leadership Academy?? "Managing Risk and Information Security is a wake-up call for information security executives and a ray of light for business leaders.? It equips organizations with the knowledge required to transform their security programs from a "culture of no" to one focused on agility, value and competitiveness. Unlike other publications, Malcolm provides clear and immediately applicable solutions to optimally balance the frequently opposing needs of risk reduction and business growth. This book should be required reading for anyone currently serving in, or seeking to achieve, the role of Chief Information Security Officer." Jamil Farshchi, Senior Business Leader of Strategic Planning and Initiatives, VISA??? "For too many years, business and security - either real or imagined - were at odds. In Managing Risk and Information Security: Protect to Enable, you get what you expect - real life practical ways to break logjams, have security actually enable business, and marries security architecture and business architecture. Why this book??It's written by a practitioner, and not just any practitioner, one of the leading minds in Security today." John Stewart, Chief Security Officer, Cisco?? "This book is an invaluable guide to help security professionals address risk in new ways in this alarmingly fast changing environment. Packed with examples which makes it a pleasure to read, the book captures practical ways a forward thinking CISO can turn information security into a competitive advantage for their business.?? This book provides a new framework for managing risk in an entertaining and thought provoking way. This will change the way security professionals work with their business leaders, and help get products to market faster.? The 6 irrefutable laws of information security should be on a stone plaque on the desk of every security professional." Steven Proctor, VP, Audit & Risk Management, Flextronics 
546 |a English. 
650 0 |a Computer security 
650 0 |a Electronic information resources  |x Access control 
650 2 |a Computer Security 
650 2 |a Computers 
650 4 |a Sécurité informatique 
650 4 |a Sources d'information électroniques ; Accès ; Contrôle 
650 4 |a Ordinateurs 
650 4 |a computers 
650 4 |a Computer science 
650 4 |a Computers / Computer Engineering 
650 4 |a Computer security 
650 4 |a Electronic information resources ; Access control 
650 4 |a Computer science 
776 1 |z 9781430251132 
776 0 8 |i Erscheint auch als  |n Druck-Ausgabe  |z 9781430251132 
856 4 0 |l TUM01  |p ZDB-30-ORH  |q TUM_PDA_ORH  |u https://learning.oreilly.com/library/view/-/9781430251132/?ar  |m X:ORHE  |x Aggregator  |z lizenzpflichtig  |3 Volltext 
912 |a ZDB-30-ORH 
912 |a ZDB-30-ORH 
951 |a BO 
912 |a ZDB-30-ORH 
049 |a DE-91 

Datensatz im Suchindex

DE-BY-TUM_katkey ZDB-30-ORH-047574968
_version_ 1818767314481315840
adam_text
any_adam_object
author Harkins, Malcolm
author_facet Harkins, Malcolm
author_role aut
author_sort Harkins, Malcolm
author_variant m h mh
building Verbundindex
bvnumber localTUM
collection ZDB-30-ORH
ctrlnum (DE-627-1)047574968
(DE-599)KEP047574968
(ORHE)9781430251132
dewey-full 005.8
dewey-hundreds 000 - Computer science, information, general works
dewey-ones 005 - Computer programming, programs, data, security
dewey-raw 005.8
dewey-search 005.8
dewey-sort 15.8
dewey-tens 000 - Computer science, information, general works
discipline Informatik
format Electronic
eBook
fullrecord <?xml version="1.0" encoding="UTF-8"?><collection xmlns="http://www.loc.gov/MARC21/slim"><record><leader>09806cam a22006492 4500</leader><controlfield tag="001">ZDB-30-ORH-047574968</controlfield><controlfield tag="003">DE-627-1</controlfield><controlfield tag="005">20240228115139.0</controlfield><controlfield tag="007">cr uuu---uuuuu</controlfield><controlfield tag="008">191023s2013 xx |||||o 00| ||eng c</controlfield><datafield tag="020" ind1=" " ind2=" "><subfield code="a">9781430251149</subfield><subfield code="c">electronic bk.</subfield><subfield code="9">978-1-4302-5114-9</subfield></datafield><datafield tag="020" ind1=" " ind2=" "><subfield code="a">143025114X</subfield><subfield code="c">electronic bk.</subfield><subfield code="9">1-4302-5114-X</subfield></datafield><datafield tag="020" ind1=" " ind2=" "><subfield code="a">1430251131</subfield><subfield code="9">1-4302-5113-1</subfield></datafield><datafield tag="020" ind1=" " ind2=" "><subfield code="a">9781430251132</subfield><subfield code="9">978-1-4302-5113-2</subfield></datafield><datafield tag="020" ind1=" " ind2=" "><subfield code="a">9781430251132</subfield><subfield code="9">978-1-4302-5113-2</subfield></datafield><datafield tag="035" ind1=" " ind2=" "><subfield code="a">(DE-627-1)047574968</subfield></datafield><datafield tag="035" ind1=" " ind2=" "><subfield code="a">(DE-599)KEP047574968</subfield></datafield><datafield tag="035" ind1=" " ind2=" "><subfield code="a">(ORHE)9781430251132</subfield></datafield><datafield tag="035" ind1=" " ind2=" "><subfield code="a">(DE-627-1)047574968</subfield></datafield><datafield tag="040" ind1=" " ind2=" "><subfield code="a">DE-627</subfield><subfield code="b">ger</subfield><subfield code="c">DE-627</subfield><subfield code="e">rda</subfield></datafield><datafield tag="041" ind1=" " ind2=" "><subfield code="a">eng</subfield></datafield><datafield tag="072" ind1=" " ind2="7"><subfield code="a">UT</subfield><subfield code="2">bicssc</subfield></datafield><datafield tag="072" ind1=" " ind2="7"><subfield code="a">COM069000</subfield><subfield code="2">bisacsh</subfield></datafield><datafield tag="072" ind1=" " ind2="7"><subfield code="a">COM032000</subfield><subfield code="2">bisacsh</subfield></datafield><datafield tag="082" ind1="0" ind2=" "><subfield code="a">005.8</subfield><subfield code="2">23</subfield></datafield><datafield tag="100" ind1="1" ind2=" "><subfield code="a">Harkins, Malcolm</subfield><subfield code="e">VerfasserIn</subfield><subfield code="4">aut</subfield></datafield><datafield tag="245" ind1="1" ind2="0"><subfield code="a">Managing risk and information security</subfield><subfield code="b">protect to enable</subfield><subfield code="c">Malcolm Harkins</subfield></datafield><datafield tag="264" ind1=" " ind2="1"><subfield code="a">[New York]</subfield><subfield code="b">Apress</subfield><subfield code="c">2013</subfield></datafield><datafield tag="264" ind1=" " ind2="1"><subfield code="a">[New York]</subfield><subfield code="b">Distributed to the Book trade worldwide by Springer Science+Business Media</subfield><subfield code="c">2013</subfield></datafield><datafield tag="300" ind1=" " ind2=" "><subfield code="a">1 online resource (1 volume)</subfield><subfield code="b">illustrations</subfield></datafield><datafield tag="336" ind1=" " ind2=" "><subfield code="a">Text</subfield><subfield code="b">txt</subfield><subfield code="2">rdacontent</subfield></datafield><datafield tag="337" ind1=" " ind2=" "><subfield code="a">Computermedien</subfield><subfield code="b">c</subfield><subfield code="2">rdamedia</subfield></datafield><datafield tag="338" ind1=" " ind2=" "><subfield code="a">Online-Ressource</subfield><subfield code="b">cr</subfield><subfield code="2">rdacarrier</subfield></datafield><datafield tag="490" ind1="0" ind2=" "><subfield code="a">The expert's voice in information technology</subfield></datafield><datafield tag="500" ind1=" " ind2=" "><subfield code="a">Includes bibliographical references and index. - Online resource; title from PDF title page (Safari, viewed February 1, 2013)</subfield></datafield><datafield tag="506" ind1=" " ind2=" "><subfield code="a">Open Access.</subfield></datafield><datafield tag="520" ind1=" " ind2=" "><subfield code="a">Managing Risk and Information Security: Protect to Enable, an ApressOpen title, describes the changing risk environment and why a fresh approach to information security is needed. Because almost every aspect of an enterprise is now dependent on technology, the focus of IT security must shift from locking down assets to enabling the business while managing and surviving risk. This compact book discusses business risk from a broader perspective, including privacy and regulatory considerations. It describes the increasing number of threats and vulnerabilities, but also offers strategies for developing solutions. These include discussions of how enterprises can take advantage of new and emerging technologies - such as social media and the huge proliferation of Internet-enabled devices - while minimizing risk. With ApressOpen, content is freely available through multiple online distribution channels and electronic formats with the goal of disseminating professionally edited and technically reviewed content to the worldwide community. Here are some of the responses from reviewers of this exceptional work: "Managing Risk and Information Security is a perceptive, balanced, and often thought-provoking exploration of evolving information risk and security challenges within a business context.? Harkins clearly connects the needed, but often-overlooked linkage and dialog between the business and technical worlds and offers actionable strategies.?? The book contains eye-opening security insights that are easily understood, even by the curious layman." Fred Wettling, Bechtel Fellow, IS &amp; T Ethics &amp; Compliance Officer, Bechtel?? "As disruptive technology innovations and escalating cyber threats continue to create enormous information security challenges, Managing Risk and Information Security: Protect to Enable provides a much-needed perspective. This book compels information security professionals to think differently about concepts of risk management in order to be more effective. The specific and practical guidance offers a fast-track formula for developing information security strategies which are lock-step with business priorities." Laura Robinson, Principal, Robinson Insight Chair, Security for Business Innovation Council (SBIC) Program Director, Executive Security Action Forum (ESAF) "The mandate of the information security function is being completely rewritten. Unfortunately most heads of security haven't picked up on the change, impeding their companies' agility and ability to innovate. This book makes the case for why security needs to change, and shows how to get started. It will be regarded as marking the turning point in information security for years to come." Dr. Jeremy Bergsman, Practice Manager, CEB?? "The world we are responsible to protect is changing dramatically and at an accelerating pace. Technology is pervasive in virtually every aspect of our lives. Clouds, virtualization and mobile are redefining computing - and they are just the beginning of what is to come. Your security perimeter is defined by wherever your information and people happen to be. We are attacked by professional adversaries who are better funded than we will ever be. We in the information security profession must change as dramatically as the environment we protect. We need new skills and new strategies to do our jobs effectively. We literally need to change the way we think.? Written by one of the best in the business, Managing Risk and Information Security challenges traditional security theory with clear examples of the need for change. It also provides expert advice on how to dramatically increase the success of your security strategy and methods - from dealing with the misperception of risk to how to become a Z-shaped CISO.? Managing Risk and Information Security is the ultimate treatise on how to deliver effective security to the world we live in for the next 10 years. It is absolute must reading for anyone in our profession - and should be on the desk of every CISO in the world."? Dave Cullinane, CISSP CEO Security Starfish, LLC "In this overview, Malcolm Harkins delivers an insightful survey of the trends, threats, and tactics shaping information risk and security. From regulatory compliance to psychology to the changing threat context, this work provides a compelling introduction to an important topic and trains helpful attention on the effects of changing technology and management practices." Dr. Mariano-Florentino Cuľlar Professor, Stanford Law School Co-Director, Stanford Center for International Security and Cooperation (CISAC), Stanford University?? "Malcolm Harkins gets it. In his new book Malcolm outlines the major forces changing the information security risk landscape from a big picture perspective, and then goes on to offer effective methods of managing that risk from a practitioner's viewpoint. The combination makes this book unique and a must read for anyone interested in IT risk." Dennis Devlin AVP, Information Security and Compliance, The George Washington University?? "Managing Risk and Information Security is the first-to-read, must-read book on information security for C-Suite executives.? It is accessible, understandable and actionable. No sky-is-falling scare tactics, no techno-babble - just straight talk about a critically important subject. There is no better primer on the economics, ergonomics and psycho-behaviourals of security than this." Thornton May, Futurist, Executive Director &amp; Dean, IT Leadership Academy?? "Managing Risk and Information Security is a wake-up call for information security executives and a ray of light for business leaders.? It equips organizations with the knowledge required to transform their security programs from a "culture of no" to one focused on agility, value and competitiveness. Unlike other publications, Malcolm provides clear and immediately applicable solutions to optimally balance the frequently opposing needs of risk reduction and business growth. This book should be required reading for anyone currently serving in, or seeking to achieve, the role of Chief Information Security Officer." Jamil Farshchi, Senior Business Leader of Strategic Planning and Initiatives, VISA??? "For too many years, business and security - either real or imagined - were at odds. In Managing Risk and Information Security: Protect to Enable, you get what you expect - real life practical ways to break logjams, have security actually enable business, and marries security architecture and business architecture. Why this book??It's written by a practitioner, and not just any practitioner, one of the leading minds in Security today." John Stewart, Chief Security Officer, Cisco?? "This book is an invaluable guide to help security professionals address risk in new ways in this alarmingly fast changing environment. Packed with examples which makes it a pleasure to read, the book captures practical ways a forward thinking CISO can turn information security into a competitive advantage for their business.?? This book provides a new framework for managing risk in an entertaining and thought provoking way. This will change the way security professionals work with their business leaders, and help get products to market faster.? The 6 irrefutable laws of information security should be on a stone plaque on the desk of every security professional." Steven Proctor, VP, Audit &amp; Risk Management, Flextronics</subfield></datafield><datafield tag="546" ind1=" " ind2=" "><subfield code="a">English.</subfield></datafield><datafield tag="650" ind1=" " ind2="0"><subfield code="a">Computer security</subfield></datafield><datafield tag="650" ind1=" " ind2="0"><subfield code="a">Electronic information resources</subfield><subfield code="x">Access control</subfield></datafield><datafield tag="650" ind1=" " ind2="2"><subfield code="a">Computer Security</subfield></datafield><datafield tag="650" ind1=" " ind2="2"><subfield code="a">Computers</subfield></datafield><datafield tag="650" ind1=" " ind2="4"><subfield code="a">Sécurité informatique</subfield></datafield><datafield tag="650" ind1=" " ind2="4"><subfield code="a">Sources d'information électroniques ; Accès ; Contrôle</subfield></datafield><datafield tag="650" ind1=" " ind2="4"><subfield code="a">Ordinateurs</subfield></datafield><datafield tag="650" ind1=" " ind2="4"><subfield code="a">computers</subfield></datafield><datafield tag="650" ind1=" " ind2="4"><subfield code="a">Computer science</subfield></datafield><datafield tag="650" ind1=" " ind2="4"><subfield code="a">Computers / Computer Engineering</subfield></datafield><datafield tag="650" ind1=" " ind2="4"><subfield code="a">Computer security</subfield></datafield><datafield tag="650" ind1=" " ind2="4"><subfield code="a">Electronic information resources ; Access control</subfield></datafield><datafield tag="650" ind1=" " ind2="4"><subfield code="a">Computer science</subfield></datafield><datafield tag="776" ind1="1" ind2=" "><subfield code="z">9781430251132</subfield></datafield><datafield tag="776" ind1="0" ind2="8"><subfield code="i">Erscheint auch als</subfield><subfield code="n">Druck-Ausgabe</subfield><subfield code="z">9781430251132</subfield></datafield><datafield tag="856" ind1="4" ind2="0"><subfield code="l">TUM01</subfield><subfield code="p">ZDB-30-ORH</subfield><subfield code="q">TUM_PDA_ORH</subfield><subfield code="u">https://learning.oreilly.com/library/view/-/9781430251132/?ar</subfield><subfield code="m">X:ORHE</subfield><subfield code="x">Aggregator</subfield><subfield code="z">lizenzpflichtig</subfield><subfield code="3">Volltext</subfield></datafield><datafield tag="912" ind1=" " ind2=" "><subfield code="a">ZDB-30-ORH</subfield></datafield><datafield tag="912" ind1=" " ind2=" "><subfield code="a">ZDB-30-ORH</subfield></datafield><datafield tag="951" ind1=" " ind2=" "><subfield code="a">BO</subfield></datafield><datafield tag="912" ind1=" " ind2=" "><subfield code="a">ZDB-30-ORH</subfield></datafield><datafield tag="049" ind1=" " ind2=" "><subfield code="a">DE-91</subfield></datafield></record></collection>
id ZDB-30-ORH-047574968
illustrated Illustrated
indexdate 2024-12-18T08:47:55Z
institution BVB
isbn 9781430251149
143025114X
1430251131
9781430251132
language English
open_access_boolean
owner DE-91
DE-BY-TUM
owner_facet DE-91
DE-BY-TUM
physical 1 online resource (1 volume) illustrations
psigel ZDB-30-ORH
publishDate 2013
publishDateSearch 2013
publishDateSort 2013
publisher Apress
Distributed to the Book trade worldwide by Springer Science+Business Media
record_format marc
series2 The expert's voice in information technology
spelling Harkins, Malcolm VerfasserIn aut
Managing risk and information security protect to enable Malcolm Harkins
[New York] Apress 2013
[New York] Distributed to the Book trade worldwide by Springer Science+Business Media 2013
1 online resource (1 volume) illustrations
Text txt rdacontent
Computermedien c rdamedia
Online-Ressource cr rdacarrier
The expert's voice in information technology
Includes bibliographical references and index. - Online resource; title from PDF title page (Safari, viewed February 1, 2013)
Open Access.
Managing Risk and Information Security: Protect to Enable, an ApressOpen title, describes the changing risk environment and why a fresh approach to information security is needed. Because almost every aspect of an enterprise is now dependent on technology, the focus of IT security must shift from locking down assets to enabling the business while managing and surviving risk. This compact book discusses business risk from a broader perspective, including privacy and regulatory considerations. It describes the increasing number of threats and vulnerabilities, but also offers strategies for developing solutions. These include discussions of how enterprises can take advantage of new and emerging technologies - such as social media and the huge proliferation of Internet-enabled devices - while minimizing risk. With ApressOpen, content is freely available through multiple online distribution channels and electronic formats with the goal of disseminating professionally edited and technically reviewed content to the worldwide community. Here are some of the responses from reviewers of this exceptional work: "Managing Risk and Information Security is a perceptive, balanced, and often thought-provoking exploration of evolving information risk and security challenges within a business context.? Harkins clearly connects the needed, but often-overlooked linkage and dialog between the business and technical worlds and offers actionable strategies.?? The book contains eye-opening security insights that are easily understood, even by the curious layman." Fred Wettling, Bechtel Fellow, IS & T Ethics & Compliance Officer, Bechtel?? "As disruptive technology innovations and escalating cyber threats continue to create enormous information security challenges, Managing Risk and Information Security: Protect to Enable provides a much-needed perspective. This book compels information security professionals to think differently about concepts of risk management in order to be more effective. The specific and practical guidance offers a fast-track formula for developing information security strategies which are lock-step with business priorities." Laura Robinson, Principal, Robinson Insight Chair, Security for Business Innovation Council (SBIC) Program Director, Executive Security Action Forum (ESAF) "The mandate of the information security function is being completely rewritten. Unfortunately most heads of security haven't picked up on the change, impeding their companies' agility and ability to innovate. This book makes the case for why security needs to change, and shows how to get started. It will be regarded as marking the turning point in information security for years to come." Dr. Jeremy Bergsman, Practice Manager, CEB?? "The world we are responsible to protect is changing dramatically and at an accelerating pace. Technology is pervasive in virtually every aspect of our lives. Clouds, virtualization and mobile are redefining computing - and they are just the beginning of what is to come. Your security perimeter is defined by wherever your information and people happen to be. We are attacked by professional adversaries who are better funded than we will ever be. We in the information security profession must change as dramatically as the environment we protect. We need new skills and new strategies to do our jobs effectively. We literally need to change the way we think.? Written by one of the best in the business, Managing Risk and Information Security challenges traditional security theory with clear examples of the need for change. It also provides expert advice on how to dramatically increase the success of your security strategy and methods - from dealing with the misperception of risk to how to become a Z-shaped CISO.? Managing Risk and Information Security is the ultimate treatise on how to deliver effective security to the world we live in for the next 10 years. It is absolute must reading for anyone in our profession - and should be on the desk of every CISO in the world."? Dave Cullinane, CISSP CEO Security Starfish, LLC "In this overview, Malcolm Harkins delivers an insightful survey of the trends, threats, and tactics shaping information risk and security. From regulatory compliance to psychology to the changing threat context, this work provides a compelling introduction to an important topic and trains helpful attention on the effects of changing technology and management practices." Dr. Mariano-Florentino Cuľlar Professor, Stanford Law School Co-Director, Stanford Center for International Security and Cooperation (CISAC), Stanford University?? "Malcolm Harkins gets it. In his new book Malcolm outlines the major forces changing the information security risk landscape from a big picture perspective, and then goes on to offer effective methods of managing that risk from a practitioner's viewpoint. The combination makes this book unique and a must read for anyone interested in IT risk." Dennis Devlin AVP, Information Security and Compliance, The George Washington University?? "Managing Risk and Information Security is the first-to-read, must-read book on information security for C-Suite executives.? It is accessible, understandable and actionable. No sky-is-falling scare tactics, no techno-babble - just straight talk about a critically important subject. There is no better primer on the economics, ergonomics and psycho-behaviourals of security than this." Thornton May, Futurist, Executive Director & Dean, IT Leadership Academy?? "Managing Risk and Information Security is a wake-up call for information security executives and a ray of light for business leaders.? It equips organizations with the knowledge required to transform their security programs from a "culture of no" to one focused on agility, value and competitiveness. Unlike other publications, Malcolm provides clear and immediately applicable solutions to optimally balance the frequently opposing needs of risk reduction and business growth. This book should be required reading for anyone currently serving in, or seeking to achieve, the role of Chief Information Security Officer." Jamil Farshchi, Senior Business Leader of Strategic Planning and Initiatives, VISA??? "For too many years, business and security - either real or imagined - were at odds. In Managing Risk and Information Security: Protect to Enable, you get what you expect - real life practical ways to break logjams, have security actually enable business, and marries security architecture and business architecture. Why this book??It's written by a practitioner, and not just any practitioner, one of the leading minds in Security today." John Stewart, Chief Security Officer, Cisco?? "This book is an invaluable guide to help security professionals address risk in new ways in this alarmingly fast changing environment. Packed with examples which makes it a pleasure to read, the book captures practical ways a forward thinking CISO can turn information security into a competitive advantage for their business.?? This book provides a new framework for managing risk in an entertaining and thought provoking way. This will change the way security professionals work with their business leaders, and help get products to market faster.? The 6 irrefutable laws of information security should be on a stone plaque on the desk of every security professional." Steven Proctor, VP, Audit & Risk Management, Flextronics
English.
Computer security
Electronic information resources Access control
Computer Security
Computers
Sécurité informatique
Sources d'information électroniques ; Accès ; Contrôle
Ordinateurs
computers
Computer science
Computers / Computer Engineering
Electronic information resources ; Access control
9781430251132
Erscheint auch als Druck-Ausgabe 9781430251132
TUM01 ZDB-30-ORH TUM_PDA_ORH https://learning.oreilly.com/library/view/-/9781430251132/?ar X:ORHE Aggregator lizenzpflichtig Volltext
spellingShingle Harkins, Malcolm
Managing risk and information security protect to enable
Computer security
Electronic information resources Access control
Computer Security
Computers
Sécurité informatique
Sources d'information électroniques ; Accès ; Contrôle
Ordinateurs
computers
Computer science
Computers / Computer Engineering
Electronic information resources ; Access control
title Managing risk and information security protect to enable
title_auth Managing risk and information security protect to enable
title_exact_search Managing risk and information security protect to enable
title_full Managing risk and information security protect to enable Malcolm Harkins
title_fullStr Managing risk and information security protect to enable Malcolm Harkins
title_full_unstemmed Managing risk and information security protect to enable Malcolm Harkins
title_short Managing risk and information security
title_sort managing risk and information security protect to enable
title_sub protect to enable
topic Computer security
Electronic information resources Access control
Computer Security
Computers
Sécurité informatique
Sources d'information électroniques ; Accès ; Contrôle
Ordinateurs
computers
Computer science
Computers / Computer Engineering
Electronic information resources ; Access control
topic_facet Computer security
Electronic information resources Access control
Computer Security
Computers
Sécurité informatique
Sources d'information électroniques ; Accès ; Contrôle
Ordinateurs
computers
Computer science
Computers / Computer Engineering
Electronic information resources ; Access control
url https://learning.oreilly.com/library/view/-/9781430251132/?ar
work_keys_str_mv AT harkinsmalcolm managingriskandinformationsecurityprotecttoenable

Ähnliche Einträge