Please note: In order to keep Hive up to date and provide users with the best features, we are no longer able to fully support Internet Explorer. The site is still available to you, however some sections of the site may appear broken. We would encourage you to move to a more modern browser like Firefox, Edge or Chrome in order to experience the site fully.

Supporting your high street Find out how »
Security Program and Policies : Principles and Practices, EPUB eBook

Security Program and Policies : Principles and Practices EPUB

EPUB

Download - Immediately Available
Please note: eBooks can only be purchased with a UK issued credit card and all our eBooks (ePub and PDF) are DRM protected.

Description

Everything you need to know about information security programs and policies, in one book

  • Clearly explains all facets of InfoSec program and policy planning, development, deployment, and management
  • Thoroughly updated for today's challenges, laws, regulations, and best practices
  • The perfect resource for anyone pursuing an information security management career

In today's dangerous world, failures in information security can be catastrophic. Organizations must protect themselves. Protection begins with comprehensive, realistic policies. This up-to-date guide will help you create, deploy, and manage them.

Complete and easy to understand, it explains key concepts and techniques through real-life examples. You'll master modern information security regulations and frameworks, and learn specific best-practice policies for key industry sectors, including finance, healthcare, online commerce, and small business.

If you understand basic information security, you're ready to succeed with this book. You'll find projects, questions, exercises, examples, links to valuable easy-to-adapt information security policies...everything you need to implement a successful information security program.

Learn how to

* Establish program objectives, elements, domains, and governance

* Understand policies, standards, procedures, guidelines, and plans-and the differences among them

* Write policies in "plain language," with the right level of detail

* Apply the Confidentiality, Integrity & Availability (CIA) security model

* Use NIST resources and ISO/IEC 27000-series standards

* Align security with business strategy

* Define, inventory, and classify your information and systems

* Systematically identify, prioritize, and manage InfoSec risks

* Reduce "people-related" risks with role-based Security Education, Awareness, and Training (SETA)

* Implement effective physical, environmental, communications, and operational security

* Effectively manage access control

* Secure the entire system development lifecycle

* Respond to incidents and ensure continuity of operations

* Comply with laws and regulations, including GLBA, HIPAA/HITECH, FISMA, state data security and notification rules, and PCI DSS

Information

Other Formats

Save 20%

£50.79

£40.63

Download - Immediately Available
Add to Basket
Sign in to add to wishlist
 
Delivered to your inbox

to transfer to your device

eBook Help

Is this the right eBook for
my device? How do I download
this eBook? See help and FAQs pages

Information