Managing risk in information systems /
Darril Gibson.
- 2nd ed.
- Burlington, MA : Jones & Bartlett Learning, c2015
- xvii, 462 p.
- Jones & Bartlett Learning information systems security & assurance series .
- Jones & Bartlett Learning information systems security & assurance series. .
Title from title screen.
Includes bibliographical references and index.
Text.
This second edition provides a comprehensive overview of the SSCP Risk, Response, and Recovery Domain in addition to providing a thorough overview of risk management and its implications on IT infrastructures and compliance. Written by industry experts, and using a wealth of examples and exercises, this book incorporates hands-on activities to walk the reader through the fundamentals of risk management, strategies and approaches for mitigating risk, and the anatomy of how to create a plan that reduces risk. It provides a modern and comprehensive view of information security policies and frameworks; examines the technical knowledge and software skills required for policy implementation; explores the creation of an effective IT security policy framework; discusses the latest governance, regulatory mandates, business drives, legal considerations, and much more. --
Mode of access: Internet via World Wide Web.
Digitized and made available by: Books24x7.com.
Computer security. Electronic information resources--Access control.