Information Risk Management A practitioner's guide

Mostrar otras versiones (3)

Information risk management (IRM) is about identifying, assessing, prioritising and treating risks to keep information secure and available. This accessible book is a practical guide to understanding the principles of IRM and developing a strategic approach to an IRM programme. It is the only textbo...

Descripción completa

Detalles Bibliográficos
Clasificación:Libro Electrónico
Autor principal: Sutton, David (Autor)
Formato: Electrónico eBook
Idioma:Inglés
Publicado: Swindon BCS, The Chartered Institute for IT 2021
Edición:2nd.
Temas:
Information technology > Management.
Risk management.
Computer security.
Privacy & data protection.
COMPUTERS / Management Information Systems.
BUSINESS & ECONOMICS / Information Management.
COMPUTERS / Security / General.
Privacy and data protection.
Acceso en línea:Texto completo (Requiere registro previo con correo institucional)
Tabla de Contenidos:
  • 1. The need for information risk management2. Review of information security fundamentals3. The information risk management programme 4. Risk identification 5. Threat and vulnerability assessment 6. Risk analysis and risk evaluation 7. Risk treatment 8. Risk reporting and presentation 9. Communication, consultation, monitoring and review 10. The NCSC Certified Certification scheme 11. HMG Security-related documents 12. Appendix A
  • Taxonomies and descriptions 13. Appendix B
  • Typical threats and hazards 14. Appendix C
  • Typical vulnerabilities 15. Appendix D
  • Information Risk Controls 16. Appendix E
  • Methodologies, guidelines and tools 17. Appendix F
  • Templates 18. Appendix G
  • HMG cyber security guidelines 19. References and further reading

Ejemplares similares