January 2006
Beginner
1152 pages
75h 49m
English
book
Handbook of Information Security: Threats, Vulnerabilities, Prevention, Detection, and Management, Volume 3
by Hossein Bidgoli
Content preview from Handbook of Information Security: Threats, Vulnerabilities, Prevention, Detection, and Management, Volume 3
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
Risk Management for IT Security
Rick Kazman and Daniel N. Port, University of Hawaii
David Klappholz, Stevens Institute of Technology
Quantitative versus Qualitative Approaches
Management of Information Security Standards
TCSEC, ITSEC, CTCPEC, Common Criteria, and ISO 15408
BS 7799, ISO 17799, and ISO TR 13335 (GMITS)
Strategic Risk Management Methods
Practical Strategic Risk Models
Multitechnique Strategic Methods
Strategic Decision-Making and Competing Risks
Balancing Competing Risks for Strategic Planning
Practical Risk Exposure Estimation
INTRODUCTION
According to Carr, Konda, Monarch, Ulrich, & Walker (1993), risks must be managed, and risk management must be part of any mature organization's overall management practices and management structure. They identify these primary activities for managing risk:
Identify: Risks must first be identified before they can be managed.
Analyze: Risks must be analyzed so that management can make prudent decisions about them.
Plan: For information about a risk to be turned into action, a detailed plan, outlining both present and potential future actions, ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.