Cargando…
CRISC certified in risk and information systems control all-in-one exam guide /
A fully updated self-study guide for the industry-standard information technology risk certification, CRISC Written by information security risk experts, this complete self-study system is designed to help you prepare for--and pass--ISACA's CRISC certification exam. CRISC Certified in Risk and...
| Clasificación: | Libro Electrónico |
|---|---|
| Autores principales: | , , |
| Formato: | Electrónico eBook |
| Idioma: | Inglés |
| Publicado: |
New York :
McGraw-Hill Education,
2022.
|
| Edición: | Second edition. |
| Temas: | |
| Acceso en línea: | Texto completo (Requiere registro previo con correo institucional) |
MARC
| LEADER | 00000cam a22000007i 4500 | ||
|---|---|---|---|
| 001 | OR_on1309015615 | ||
| 003 | OCoLC | ||
| 005 | 20231017213018.0 | ||
| 006 | m o d | ||
| 007 | cr cnu---unuuu | ||
| 008 | 220402s2022 nyua o 001 0 eng d | ||
| 040 | |a EBLCP |b eng |e rda |e pn |c EBLCP |d ORMDA |d EBLCP |d OCLCO |d OCLCF |d N$T |d OCLCQ |d YDX |d UKAHL |d OCLCQ |d OCLCO | ||
| 019 | |a 1334673015 | ||
| 020 | |a 9781260473346 |q electronic book | ||
| 020 | |a 1260473341 |q electronic book | ||
| 020 | |z 9781260473339 | ||
| 035 | |a (OCoLC)1309015615 |z (OCoLC)1334673015 | ||
| 037 | |a 9781260473346 |b O'Reilly Media | ||
| 050 | 4 | |a TK5105.59 |b .G74 2022 | |
| 082 | 0 | 4 | |a 658.478076 |2 23/eng/20221024 |
| 049 | |a UAMI | ||
| 100 | 1 | |a Gregory, Peter, |e author. | |
| 245 | 1 | 0 | |a CRISC certified in risk and information systems control all-in-one exam guide / |c Peter Gregory, Bobby E. Rogers, Dawn Dunkerley. |
| 246 | 3 | 0 | |a Certified in risk and information systems control all-in-one exam guide |
| 250 | |a Second edition. | ||
| 264 | 1 | |a New York : |b McGraw-Hill Education, |c 2022. | |
| 300 | |a 1 online resource (297 pages) : |b illustrations | ||
| 336 | |a text |b txt |2 rdacontent | ||
| 337 | |a computer |b c |2 rdamedia | ||
| 338 | |a online resource |b cr |2 rdacarrier | ||
| 500 | |a Includes index. | ||
| 520 | |a A fully updated self-study guide for the industry-standard information technology risk certification, CRISC Written by information security risk experts, this complete self-study system is designed to help you prepare for--and pass--ISACA's CRISC certification exam. CRISC Certified in Risk and Information Systems Control All-in-One Exam Guide, Second Edition features learning objectives, explanations, exam tips, and hundreds of practice questions. Beyond exam prep, this practical guide serves as an ideal on-the-job reference for risk management and IT security professionals. Covers all exam topics, including: IT and cybersecurity governance Enterprise risk management and risk treatment IT risk assessments and risk analysis Controls and control frameworks Third-party risk management Risk metrics, KRIs, KCIs, and KPIs Enterprise architecture IT operations management Business impact analysis Business continuity and disaster recovery planning Data privacy Online content includes: 300 practice exam questions Test engine that provides full-length practice exams and customizable quizzes by exam topic. | ||
| 505 | 0 | |a Cover -- Title Page -- Copyright Page -- Dedication -- About the Authors -- Contents at a Glance -- Contents -- Introduction -- Chapter 1 Governance -- Organizational Governance -- Organizational Strategy, Goals, and Objectives -- Organizational Structure, Roles, and Responsibilities -- Organizational Culture -- Policies and Standards -- Business Processes -- Organizational Assets -- Risk Governance -- Enterprise Risk Management and Risk Management Frameworks -- Three Lines of Defense -- Risk Profile -- Risk Appetite and Risk Tolerance -- Legal, Regulatory, and Contractual Requirements | |
| 505 | 8 | |a Professional Ethics of Risk Management -- Chapter Review -- Quick Review -- Questions -- Answers -- Chapter 2 IT Risk Assessment -- IT Risk Identification -- Risk Events -- Threat Modeling and Threat Landscape -- Vulnerability and Control Deficiency Analysis -- Risk Scenario Development -- IT Risk Analysis and Evaluation -- Risk Assessment Concepts, Standards, and Frameworks -- Risk Assessment Standards and Frameworks -- Risk Ranking -- Risk Ownership -- Risk Register -- Risk Analysis Methodologies -- Business Impact Analysis -- Inherent and Residual Risk -- Miscellaneous Risk Considerations | |
| 505 | 8 | |a Chapter Review -- Quick Review -- Questions -- Answers -- Chapter 3 Risk Response and Reporting -- Risk Response -- Risk and Control Ownership -- Risk Treatment/Risk Response Options -- Third-Party Risk -- Issues, Findings, and Exceptions Management -- Management of Emerging Risk -- Control Design and Implementation -- Control Types and Functions -- Control Standards and Frameworks -- Control Design, Selection, and Analysis -- Control Implementation -- Control Testing and Effectiveness Evaluation -- Risk Monitoring and Reporting -- Risk Treatment Plans | |
| 505 | 8 | |a Data Collection, Aggregation, Analysis, and Validation -- Risk and Control Monitoring Techniques -- Risk and Control Reporting Techniques -- Key Performance Indicators -- Key Risk Indicators -- Key Control Indicators -- Chapter Review -- Quick Review -- Questions -- Answers -- Chapter 4 Information Technology and Security -- Enterprise Architecture -- Platforms -- Software -- Databases -- Operating Systems -- Networks -- Cloud -- Gateways -- Enterprise Architecture Frameworks -- Implementing a Security Architecture -- IT Operations Management -- Project Management | |
| 505 | 8 | |a Business Continuity and Disaster Recovery Management -- Business Impact Analysis -- Recovery Objectives -- Recovery Strategies -- Plan Testing -- Resilience and Risk Factors -- Data Lifecycle Management -- Standards and Guidelines -- Data Retention Policies -- Hardware Disposal and Data Destruction Policies -- Systems Development Life Cycle -- Planning -- Requirements -- Design -- Development -- Testing -- Implementation and Operation -- Disposal -- SDLC Risks -- Emerging Technologies -- Information Security Concepts, Frameworks, and Standards -- Confidentiality, Integrity, and Availability | |
| 590 | |a O'Reilly |b O'Reilly Online Learning: Academic/Public Library Edition | ||
| 650 | 0 | |a Computer networks |x Security measures |x Examinations |v Study guides. | |
| 650 | 6 | |a Réseaux d'ordinateurs |x Sécurité |x Mesures |x Examens |v Guides de l'étudiant. | |
| 650 | 7 | |a Computer networks |x Security measures |x Examinations |2 fast | |
| 655 | 7 | |a examination study guides. |2 aat | |
| 655 | 7 | |a Study guides |2 fast | |
| 655 | 7 | |a Study guides. |2 lcgft | |
| 655 | 7 | |a Guides de l'étudiant. |2 rvmgf | |
| 700 | 1 | |a Rogers, Bobby E., |e author. | |
| 700 | 1 | |a Dunkerley, Dawn, |e author. | |
| 776 | 0 | 8 | |i Print version: |a Gregory, Peter H. |t CRISC Certified in Risk and Information Systems Control All-In-One Exam Guide, Second Edition. |d New York : McGraw-Hill Education, ©2022 |z 9781260473339 |
| 856 | 4 | 0 | |u https://learning.oreilly.com/library/view/~/9781260473346/?ar |z Texto completo (Requiere registro previo con correo institucional) |
| 938 | |a Askews and Holts Library Services |b ASKH |n AH39989496 | ||
| 938 | |a ProQuest Ebook Central |b EBLB |n EBL6942470 | ||
| 938 | |a EBSCOhost |b EBSC |n 3218122 | ||
| 994 | |a 92 |b IZTAP | ||