Book description
In order to protect company’s information assets such as sensitive customer records, health care records, etc., the security practitioner first needs to find out: what needs protected, what risks those assets are exposed to, what controls are in place to offset those risks, and where to focus attention for risk treatment. This is the true value and purpose of information security risk assessments. Effective risk assessments are meant to provide a defendable analysis of residual risk associated with your key assets so that risk treatment options can be explored. Information Security Risk Assessment Toolkit gives you the tools and skills to get a quick, reliable, and thorough risk assessment for key stakeholders.
- Based on authors’ experiences of real-world assessments, reports, and presentations
- Focuses on implementing a process, rather than theory, that allows you to derive a quick and valuable assessment
- Includes a companion web site with spreadsheets you can utilize to create and maintain the risk assessment
Table of contents
- Cover image
- Title page
- Table of Contents
- Copyright
- Dedication
- Acknowledgements
- About the Technical Editor
- About the Authors
- Introduction
- Chapter 1. Information Security Risk Assessments
- Chapter 2. Information Security Risk Assessment: A Practical Approach
- Chapter 3. Information Security Risk Assessment: Data Collection
-
Chapter 4. Information Security Risk Assessment: Data Analysis
- Introduction
- Compiling Observations from Organizational Risk Documents
- Preparation of Threat and Vulnerability Catalogs
- Overview of the System Risk Computation
- Designing the Impact Analysis Scheme
- Designing the Control Analysis Scheme
- Designing the Likelihood Analysis Scheme
- Putting it Together and the Final Risk Score
- Chapter 5. Information Security Risk Assessment: Risk Assessment
- Chapter 6. Information Security Risk Assessment: Risk Prioritization and Treatment
- Chapter 7. Information Security Risk Assessment: Reporting
- Chapter 8. Information Security Risk Assessment: Maintenance and Wrap Up
- Index
Product information
- Title: Information Security Risk Assessment Toolkit
- Author(s):
- Release date: October 2012
- Publisher(s): Syngress
- ISBN: 9781597499750
You might also like
book
Information Security Risk Management for ISO27001/ISO27002
Plan and carry out a risk assessment to protect your business information. In the knowledge economy, …
book
Information Security Handbook
Implement information security effectively as per your organization's needs. About This Book Learn to build your …
book
Information Security Handbook
This handbook provides a comprehensive collection of knowledge for emerging multidisciplinary research areas such as cybersecurity, …
book
Security Risk Management
Security Risk Management is the definitive guide for building or running an information security risk management …