Creating an Information Security Program from Scratch

Walter Williams

$103

Paperback

Not in-store but you can order this
How long will it take?

Availability Information

We source books from suppliers in Australia and overseas. For books we don't currently have in stock, the time it takes to get them from our suppliers can vary widely - from a few days to a few months - so we check each book with each supplier to determine the expected time it will take to be supplied to us.

We then advise you accordingly. If the time taken to get any book is too long for you, you can let us know and we will cancel or adjust your order, and refund as required.

To find out the anticipated arrival time for specific items prior to ordering, please contact us by phone or email:

Phone +61 2 9264 3111, or 1800 4 BOOKS (1800 4 26657) if outside Sydney:
option 1 Abbey's Bookshop (Crime, History, Science, Kids & more) • info@abbeys.com.au
option 2 Language Book Centre (ESL & Foreign Languages) • language@abbeys.com.au
option 3 Galaxy Bookshop (Sci-fi, Fantasy, Romance, Graphic Novels) • sf@galaxybooks.com.au

QTY:

English

CRC Press
15 September 2021

Legal aspects of computing; Computer security; Privacy & data protection; Computer fraud & hacking; Network management

This book is written for the first security hire in an organization, either an individual moving into this role from within the organization or hired into the role. More and more, organizations are realizing that information security requires a dedicated team with leadership distinct from information technology, and often the people who are placed into those positions have no idea where to start or how to prioritize.

There are many issues competing for their attention, standards that say do this or do that, laws, regulations, customer demands, and no guidance on what is actually effective. This book offers guidance on approaches that work for how you prioritize and build a comprehensive information security program that protects your organization.

While most books targeted at information security professionals explore specific subjects with deep expertise, this book explores the depth and breadth of the field. Instead of exploring a technology such as cloud security or a technique such as risk analysis, this book places those into the larger context of how to meet an organization's needs, how to prioritize, and what success looks like. Guides to the maturation of practice are offered, along with pointers for each topic on where to go for an in-depth exploration of each topic.

Unlike more typical books on information security that advocate a single perspective, this book explores competing perspectives with an eye to providing the pros and cons of the different approaches and the implications of choices on implementation and on maturity, as often a choice on an approach needs to change as an organization grows and matures.

By: Walter Williams
Imprint: CRC Press
Country of Publication: United Kingdom
Dimensions: Height: 234mm, Width: 156mm,
Weight: 331g
ISBN: 9780367554651
ISBN 10: 0367554658
Pages: 212
Publication Date: 15 September 2021
Audience: Professional and scholarly , Undergraduate
Format: Paperback
Publisher's Status: Active

Preface. Chapter 1 Getting Started. Chapter 2 The Things You Must Do. Chapter 3 Asset Management. Chapter 4 Vulnerability Management. Chapter 5 Incident Management. Chapter 6 The Endpoint. Chapter 7 Email Security. Chapter 8 The Network. Chapter 9 Integrating Security Into Software Development. Chapter 10 Disasters. Chapter 11 Access Control. Chapter 12 Human Issues. Chapter 13 Maturity. Index.

Walter Williams has served as an infrastructure and security architect at firms as diverse as GTE Internetworking, State Street Corp, Teradyne, The Commerce Group and EMC. He has since moved to security leadership, where he'd served as at IdentityTruth, Passkey, Lattice Engines, and Monotype. He is an outspoken proponent of design before build, an advocate of frameworks and standards, and has spoken at Security B-Sides, Source Boston, Boston Application Security Conference, Rochester Security Summit, Wall of Sheep Village within DefCon, RiskSec Toronto and other venues . His articles on Security and Service Oriented Architecture have appeared in the Information Security Management Handbook, and he has a book with CRC press on the same topic. He sat on the board of directors for the New England ISSA chapter and was a member of the program committee for Metricons 8 and 10. He has a masters degree in Anthropology from Hunter College.

Reviews for Creating an Information Security Program from Scratch

"""This is a solid, and comprehensive, guide for those who have to start securing an enterprise from square one."" - Rob Slade, Malware Researcher, Educator, Author https://www.linkedin.com/pulse/review-creating-information-security-program-from-scratch-rob-slade/?trackingId=FfoVNajI3cwgfyKQEXhksg%3D%3D"