Loading…
Information security management : concepts and practice /
Information security cannot be effectively managed unless secure methods and standards are integrated into all phases of the information security life cycle. And, although the international community has been aggressively engaged in developing security standards for network and information security...
| Call Number: | Libro Electrónico |
|---|---|
| Main Author: | |
| Format: | Electronic eBook |
| Language: | Inglés |
| Published: |
Boca Raton, FL :
CRC Press/Taylor & Francis,
©2010.
|
| Subjects: | |
| Online Access: | Texto completo |
Table of Contents:
- Part SECTION I: INTRODUCTION
- chapter 1 Introduction to Information Security Management
- chapter 2 Introduction to Management Concepts
- chapter 3 The Information Security Life Cycle
- part SECTION II: SECURITY PLAN
- chapter 4 Security Plan
- chapter 5 Security Policy
- chapter 6 Business Continuity Planning
- part SECTION III: SECURITY ANALYSIS
- chapter 7 Security Risk Management
- chapter 8 Continual Security: Integrated Fault-Event Analysis and Response Framework (IFEAR)
- chapter 9 Active Security Assessment
- chapter 10 System Availability
- part SECTION IV: SECURITY DESIGN
- chapter 11 Nominal Security Enhancement Design Based on ISO/IEC 27002
- chapter 12 Technical Security Enhancement Based on ISO/IEC 27001
- part SECTION V: SECURITY IMPLEMENTATION
- chapter 13 Security Solutions
- chapter 14 The Common Criteria
- part SECTION VI: SECURITY REVIEW
- chapter 15 Security Review through Security Audit
- chapter 16 Privacy Rights, Information Technology, and HIPAA
- part SECTION VII: CONTINUAL SECURITY
- chapter 17 The Sarbanes{u2013}Oxley Act and IT Compliance
- chapter 18 Cyberterrorism and Homeland Security.