Chapter 3: Designing Secure Information Systems

In the previous chapter, we talked about how to protect assets with controls that have been applied based on risk, but there is so much more that can be done. What more can be done?, you ask, bursting from sheer excitement. Well…, I reply, and softly smile to myself: What if we just designed the systems with security in mind from the beginning? Your face lights up, and the stars create tracers as the world whirls around us.

No—but seriously, we should be designing our systems with security in mind from the beginning. That's what this chapter is about. By the way, I don't mean design the same way a man (who is still standing on a Segway scooter inside the elevator of your building with you) says ...

Get Infosec Strategies and Best Practices now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Infosec Strategies and Best Practices by Joseph MacMillan

Chapter 3: Designing Secure Information Systems

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly