Security Management

Security management includes risk management, information security policies, procedures, standards, guidelines, baselines, information classification, security organization, and security education. These core components serve as the foundation of a corporation’s security program. The objective of security, and a security program, is to protect the company and its assets. A risk analysis identifies these assets, discovers the threats that put them at risk, and estimates the possible damage and potential loss a company could endure if any of these threats becomes real. The results of the risk analysis help management construct a budget with the necessary funds to protect the recognized assets from their identified threats and ...

Get CISSP Certification All-in-One Exam Guide, Fourth Edition, 4th Edition now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.