EBOOK Information Assurance Handbook 1e
- Note: the eBook does not include access to Connect
- Access the eBook anytime, anywhere: online or offline
- Create notes, flashcards and make annotations while you study
- Full searchable content: quickly find the answers you are looking for
1: The Need for Information Security
2: Concepts in Informaiton Security
3: Assets, Threats, Vulnerabilities, Risks, and Controls
4: Security Professionals and Organizations
5: Information Security management System
6: Implementing Information Security Strategy into Current Practices, Regulations, and Plans
Part II Information Security Planning Process
7: Approaches to Implementing Information Security
8: Organizational Structure for Mananging Information Security
9: Asset Management
10: Information Security Risk Management
11: Information Security Policy
12: Human Resouce Security
13: Certification, Accreditation, and Assurance
Part III Information Security Prevention Process
14: Information Security in System Development
15: Physical and Environmental Security Controls
16: Information Security Awareness, Training, and Education
17: Preventive Tools and Techniques
18: Access Control
Part IV Information Security Detection Process
19: Information Security Monitoring Tools and Methods
20: Information Security Measurements and Metrics
Part V Information Security Recovery Process
21: Information Security Incident Handling
22: Computer Forensics
23: Business Continuity
24: Backup and Restoration
Appendices
Publisher's Note: Products purchased from Third Party sellers are not guaranteed by the publisher for quality authenticity or access to any online entitlements included with the product. Best practices for protecting critical data and system.
Information Assurance Handbook: Effective Computer Security and Risk Management Strategies discusses the tools and techniques required to prevent detect contain correct and recover from security breaches and other information assurance failures. This practical resource explains how to integrate information assurance into your enterprise planning in a non-technical manner. It leads you through building an IT strategy and offers anorganizational approach to identifying implementing and controlling information assurance initiatives for small businesses and global enterprises alike. Common threats and vulnerabilities are described and applicable controls based on risk profiles are provided. Practical information assurance application examples are presented for select industries including healthcare retail and industrial control systems. Chapter-endingcritical thinking exercises reinforce the material covered. An extensive list of scholarly works and international government standards is also provided in this detailed guide. Comprehensive coverage includes:
Basic information assurance principles and conceptsInformation assurance management systemCurrent practices regulations and plansImpact of organizational structureAsset managementRisk management and mitigationHuman resource assuranceAdvantages of certification accreditation and assuranceInformation assurance in system development and acquisitionPhysical and environmental security controlsInformation assurance awareness training and educationAccess controlInformation security monitoring tools and methodsInformation assurance measurements and metricsIncident handling and computer forensicsBusiness continuity managementBackup and restorationCloud computing and outsourcing strategiesInformation assurance big data concerns