Skip to Content
Information Security Management Metrics
book

Information Security Management Metrics

by W. Krag Brotby, CISM
March 2009
Intermediate to advanced
200 pages
7h 13m
English
Auerbach Publications
Content preview from Information Security Management Metrics
Appendix E 191
Business
Attribute Attribute Explanation
Metric
Type
Suggested
Measurement
Approach
Soft Independent audit and
review against
Security Architecture
Capability Maturity
Model
2
with respect
to the ability to
prevent repudiations
that cannot be easily
resolved
Owned There should be an entity
designated as “owner” of
every system. This owner is
the policy maker for all
aspects of risk management
with respect to the system
and exerts the ultimate
authority for controlling the
system.
Soft Independent audit
and review against
Security Architecture
Capability Maturity
Model
2
of the
ownership
arrangements and
of the management
processes ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

AirBnbBlueOriginElectronic ArtsHomeDepotNasdaqRakutenTata Consultancy Services

QuotationMarkO’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.
Julian F.
Head of Cybersecurity
QuotationMarkI wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.
Addison B.
Field Engineer
QuotationMarkI’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.
Amir M.
Data Platform Tech Lead
QuotationMarkI'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
Mark W.
Embedded Software Engineer

You might also like

Metrics and Methods for Security Risk Management

Metrics and Methods for Security Risk Management

Carl Young
PRAGMATIC Security Metrics

PRAGMATIC Security Metrics

W. Krag Brotby, Gary Hinson

Publisher Resources

ISBN: 9781420052862