Information Security Management Metrics
A Definitive Guide to Effective Security Monitoring and Measurement
Seiten
2009
Auerbach (Verlag)
978-1-4200-5285-5 (ISBN)
Auerbach (Verlag)
978-1-4200-5285-5 (ISBN)
Offers an approach to developing and implementing relevant security metrics essential for effective security management. This book offers practical guidance for implementing metrics across an entire organization, thereby improving budget and resource allocation, and reducing the possibility that unanticipated events will have catastrophic impacts.
Spectacular security failures continue to dominate the headlines despite huge increases in security budgets and ever-more draconian regulations. The 20/20 hindsight of audits is no longer an effective solution to security weaknesses, and the necessity for real-time strategic metrics has never been more critical.
Information Security Management Metrics: A Definitive Guide to Effective Security Monitoring and Measurement
offers a radical new approach for developing and implementing security metrics essential for supporting business activities and managing information risk. This work provides anyone with security and risk management responsibilities insight into these critical security questions:How secure is my organization?
How much security is enough?
What are the most cost-effective security solutions?
How secure is my organization?
You can’t manage what you can’t measure
This volume shows readers how to develop metrics that can be used across an organization to assure its information systems are functioning, secure, and supportive of the organization’s business objectives. It provides a comprehensive overview of security metrics, discusses the current state of metrics in use today, and looks at promising new developments. Later chapters explore ways to develop effective strategic and management metrics for information security governance, risk management, program implementation and management, and incident management and response.
The book ensures that every facet of security required by an organization is linked to business objectives, and provides metrics to measure it. Case studies effectively demonstrate specific ways that metrics can be implemented across an enterprise to maximize business benefit.
With three decades of enterprise information security experience, author Krag Brotby presents a workable approach to developing and managing cost-effective enterprise information security.
Spectacular security failures continue to dominate the headlines despite huge increases in security budgets and ever-more draconian regulations. The 20/20 hindsight of audits is no longer an effective solution to security weaknesses, and the necessity for real-time strategic metrics has never been more critical.
Information Security Management Metrics: A Definitive Guide to Effective Security Monitoring and Measurement
offers a radical new approach for developing and implementing security metrics essential for supporting business activities and managing information risk. This work provides anyone with security and risk management responsibilities insight into these critical security questions:How secure is my organization?
How much security is enough?
What are the most cost-effective security solutions?
How secure is my organization?
You can’t manage what you can’t measure
This volume shows readers how to develop metrics that can be used across an organization to assure its information systems are functioning, secure, and supportive of the organization’s business objectives. It provides a comprehensive overview of security metrics, discusses the current state of metrics in use today, and looks at promising new developments. Later chapters explore ways to develop effective strategic and management metrics for information security governance, risk management, program implementation and management, and incident management and response.
The book ensures that every facet of security required by an organization is linked to business objectives, and provides metrics to measure it. Case studies effectively demonstrate specific ways that metrics can be implemented across an enterprise to maximize business benefit.
With three decades of enterprise information security experience, author Krag Brotby presents a workable approach to developing and managing cost-effective enterprise information security.
Enterprise Security Architect, Thousand Oaks, California,
Introduction. Security Metrics Overview. Security Metrics. Current State of Security Metrics. Metrics Developments. Relevance. The Metrics Imperative. Attributes of Good Metrics. Information Security Governance. Metrics Development – A Different Approach. Information Security Governance Metrics. Information Security Risk Management. Information Security Program. Development Metrics. Information Security Program. Management Metrics. Incident Management and Response. Conclusions. Appendices.
| Erscheint lt. Verlag | 31.3.2009 |
|---|---|
| Zusatzinfo | 1 Tables, black and white; 14 Illustrations, black and white |
| Verlagsort | London |
| Sprache | englisch |
| Maße | 156 x 234 mm |
| Gewicht | 200 g |
| Themenwelt | Informatik ► Theorie / Studium ► Kryptologie |
| Mathematik / Informatik ► Mathematik ► Finanz- / Wirtschaftsmathematik | |
| ISBN-10 | 1-4200-5285-3 / 1420052853 |
| ISBN-13 | 978-1-4200-5285-5 / 9781420052855 |
| Zustand | Neuware |
| Haben Sie eine Frage zum Produkt? |
Mehr entdecken
aus dem Bereich
aus dem Bereich
Geschichte, Techniken, Anwendungen
Buch | Softcover (2022)
C.H.Beck (Verlag)
9,95 €
