Controlling Privacy and the Use of Data Assets, Volume 1 and 2
CRC Press
978-1-032-55017-6 (ISBN)
V2 - The book will review how new and old privacy-preserving techniques can provide practical protection for data in transit, use, and rest.
Volume 1: "Ulf Mattsson leverages his decades of experience as a CTO and security expert to show how companies can achieve data compliance without sacrificing operability." • Jim Ambrosini, CISSP, CRISC, Cybersecurity Consultant and Virtual CISO "Ulf Mattsson lays out not just the rationale for accountable data governance, he provides clear strategies and tactics that every business leader should know and put into practice. As individuals, citizens and employees, we should all take heart that following his sound thinking can provide us all with a better future." • Richard Purcell, CEO Corporate Privacy Group and former Microsoft Chief Privacy Officer Many security experts excel at working with traditional technologies but fall apart in utilizing newer data privacy techniques to balance compliance requirements and the business utility of data. This book will help readers grow out of a siloed mentality and into an enterprise risk management approach to regulatory compliance and technical roles, including technical data privacy and security issues. The book uses practical lessons learned in applying real-life concepts and tools to help security leaders and their teams craft and implement strategies. These projects deal with a variety of use cases and data types. A common goal is to find the right balance between compliance, privacy requirements, and the business utility of data. This book reviews how new and old privacy-preserving techniques can provide practical protection for data in transit, use, and rest. It positions techniques like pseudonymization, anonymization, tokenization, homomorphic encryption, dynamic masking, and more. Topics include • Trends and Evolution • Best Practices, Roadmap, and Vision • Zero Trust Architecture • Applications, Privacy by Design, and APIs • Machine Learning and Analytics • Secure Multiparty Computing • Blockchain and Data Lineage • Hybrid Cloud, CASB, and SASE • HSM, TPM, and Trusted Execution Environments • Internet of Things • Quantum Computing • And much more!
Volume 2: The book will review how new and old privacy-preserving techniques can provide practical protection for data in transit, use, and rest. We will position techniques like Data Integrity, and Ledger. This book will use practical lessons in Data Integrity, and Trust, and data's business utility. This book is based on a good understanding and experience of new and old technologies, emerging trends, and a broad experience from many projects in this domain. This book will provide unique context about the WHY (requirements and drivers), WHAT (what to do), and HOW (how to implement), and review current state and major forces representing challenges or driving change, what you should be trying to achieve, how do you do it, including discussions of different options. We will also discuss WHERE (in systems) and WHEN (roadmap). Unlike other general or academic texts, this book is being written to offer practical general advice, outline actionable strategies, and include templates for immediate use. The book contains diagrams needed to describe the topics and Use Cases. The book presents current real-world issues and technological mitigation strategies. The inclusion of the risks to both owners and custodians provide a strong case for why people should care. The book reflects the perspective of a CTO and Chief Security Strategist. I worked in and with startups and some of the largest organizations in the world. The book is for board members, senior decision-makers, and global government policy officials - CISOs, CSOs, CPOs, CTOs, auditors, consultants, investors, and other people interested in data privacy and security. I will also embed a business perspective. Why is this an important topic for the board, audit committee, and senior management regarding achieving business objectives, strategies, and goals and applying the risk appetite and tolerance? The focus is on Technical Visionary Leaders, including Chief Technology Officer, Chief Data Officer, Chief Privacy Officer, EVP/SVP/VP of Technology, Analytics, Data Architect, Chief Information Officer, EVP/SVP/VP of I.T., Chief Information Security Officer (CISO), Chief Risk Officer, Chief Compliance Officer, Chief Security Officer (CSO), EVP/SVP/VP of Security, Risk Compliance, Governance. It can also be interesting reading for privacy regulators, especially those in developed nations with specialist privacy oversight agencies (government departments) across their jurisdictions (e.g., federal and state levels).
Ulf Mattsson is a recognized information security and data privacy expert with a strong track record of more than two decades implementing cost-effective data security and privacy controls for global Fortune 500 institutions, including Citigroup, Goldman Sachs, GE Capital, BNY Mellon, AIG, Visa USA, Mastercard Worldwide, American Express, The Coca Cola Company, Wal-Mart, BestBuy, KOHL's, Microsoft, IBM, Informix, Sybase, Teradata, and RSA Security. He is currently the Chief Security Strategist and earlier the Chief Technology Officer at Protegrity, a data security company he co-founded after working 20 years at IBM in software development. Ulf is an inventor of more than 70 issued U.S. patents in data privacy and security. Ulf is active in the information security industry as a contributor to the development of data privacy and security standards in the Payment Card Industry Data Security Standard (PCI DSS) and American National Standards Institute (ANSI) X9 for the financial industry. He is on the advisory board of directors at PACE University, NY, in the area of cloud security and a frequent speaker at various international events and conferences, including the RSA Conference, and the author of more than 100 in-depth professional articles and papers on data privacy and security, including IBM Journals, IEEE Xplore, ISSA Journal and ISACA Journal. Ulf holds a master's in physics in Engineering from Chalmers University of Technology in Sweden.
Volume 1
Introduction, Acknowledgments. About the Author. SECTION I Introduction and Vision. Chapter 1 Privacy, Risks, and Threats. Chapter 2 Trends and Evolution. Chapter 3 Best Practices, Roadmap, and Vision. SECTION II Data Confidentiality and Integrity. Chapter 4 Computing on Encrypted Data. Chapter 5 Reversible Data Protection Techniques. Chapter 6 Non-Reversible Data Protection Techniques. SECTION III Users and Authorization. Chapter 7 Access Control. Chapter 8 Zero Trust Architecture. SECTION IV Applications. Chapter 9 Applications, APIs, and Privacy by Design. Chapter 10 Machine Learning and Analytics. Chapter 11 Secure Multiparty Computing. Chapter 12 Encryption and Tokenization of International Unicode Data. Chapter 13 Blockchain and Data Lineage. SECTION V Platforms. Chapter 14 Hybrid Cloud, CASB, and SASE. Chapter 15 HSM, TPM, and Trusted Execution Environments. Chapter 16 Internet of Things. Chapter 17 Quantum Computing. Chapter 18 Summary. Appendix A Standards and Regulations. Appendix B Governance, Guidance, and Frameworks. Appendix C Data Discovery and Search. Appendix D Digital Commerce, Gamification, and AI. Appendix E Innovation and Products. Appendix F Glossary. Index.
Volume 2
Section 1. Vision and Best Practices. 1. Risks and Threats. 2. Opportunities and Innovation. 3. Best Practices. 4. Vision and Roadmap. Section 2. Trust and Hybrid Cloud. 5. Zero Trust and Zero-knowledge proofs. 6. Data Protection for Hybrid Cloud. 7. Web 3.0 and Data Security. Section 3. Data Quality. 8. Metadata and Provenance of Data. 9. Data Security and Quality. 10. Analytics, Data Lakes, and Federated learning. Summary. Glossary. Appendices. A. The Future of Encryption. B. Synthetic Data and differential privacy. C. API Security. D. Blockchain Security. E. Data Governance Tools.
| Erscheint lt. Verlag | 20.10.2023 |
|---|---|
| Zusatzinfo | 1 Tables, black and white; 499 Line drawings, black and white; 93 Halftones, black and white; 592 Illustrations, black and white |
| Verlagsort | London |
| Sprache | englisch |
| Maße | 178 x 254 mm |
| Gewicht | 1061 g |
| Themenwelt | Informatik ► Datenbanken ► Data Warehouse / Data Mining |
| Mathematik / Informatik ► Informatik ► Theorie / Studium | |
| Recht / Steuern ► Privatrecht / Bürgerliches Recht ► IT-Recht | |
| ISBN-10 | 1-032-55017-1 / 1032550171 |
| ISBN-13 | 978-1-032-55017-6 / 9781032550176 |
| Zustand | Neuware |
| Haben Sie eine Frage zum Produkt? |
