Security Risk Management: Building an Information Security Risk Management Program from the Ground Up
Security Risk Management: Building an Information Security Risk Management Program from the Ground Up by Evan Wheeler, published by Elsevier S & T in 2011, is a comprehensive guide aimed at teaching practical techniques for managing security risks. This 360-page book addresses the importance of articulating risk exposures in business terms, enabling security professionals to effectively communicate the rationale behind their recommendations. It focuses on essential skills such as performing risk assessments for IT projects and managing daily risk activities, providing a foundational understanding of security risk management.
Readers will find a detailed exploration of the risk management lifecycle, including policies and assessment processes necessary for proper risk mitigation. The book includes case studies that offer hands-on experience with risk assessment tools, allowing readers to calculate the costs and benefits of security investments. By presenting a roadmap for designing and implementing a security risk management program, this edition serves as a valuable resource for professionals in the fields of computer science and information technology, particularly those focused on security.
Official synopsis Publisher
The goal of Security Risk Management is to teach you practical techniques that will be used on a daily basis, while also explaining the fundamentals so you understand the rationale behind these practices. Security professionals often fall into the trap of telling the business that they need to fix something, but they can’t explain why. This book will help you to break free from the so-called “best practices” argument by articulating risk exposures in business terms. You will learn techniques for how to perform risk assessments for new IT projects, how to efficiently manage daily risk activities, and how to qualify the current risk level for presentation to executive level management. While other books focus entirely on risk analysis methods, this is the first comprehensive guide for managing security risks.
- Named a 2011 Best Governance and ISMS Book by InfoSec Reviews
- Includes case studies to provide hands-on experience using risk assessment tools to calculate the costs and benefits of any security investment
- Explores each phase of the risk management lifecycle, focusing on policies and assessment processes that should be used to properly assess and mitigate risk
- Presents a roadmap for designing and implementing a security risk management program
Publisher
Topics
FAQ
What is “Security Risk Management: Building an Information Security Risk Management Program from the Ground Up” about?
Who is the author of “Security Risk Management: Building an Information Security Risk Management Program from the Ground Up”?
When was “Security Risk Management: Building an Information Security Risk Management Program from the Ground Up” published?
What is the ISBN for “Security Risk Management: Building an Information Security Risk Management Program from the Ground Up”?
What are the book details (language, pages, edition)?
