TY  - BOOK
AU  - Gibson,Darril
TI  - Managing risk in information systems
T2  - Jones & Bartlett Learning information systems security & assurance series
AV  - QA76.9.A25 G53 2015eb
U1  - 005.8 23
PY  - 2015///
CY  - Burlington, MA
PB  - Jones & Bartlett Learning
KW  - Computer security
KW  - Electronic information resources
KW  - Access control
N1  - Title from title screen; Includes bibliographical references and index; Text; Available also in a print ed
N2  - This second edition provides a comprehensive overview of the SSCP Risk, Response, and Recovery Domain in addition to providing a thorough overview of risk management and its implications on IT infrastructures and compliance. Written by industry experts, and using a wealth of examples and exercises, this book incorporates hands-on activities to walk the reader through the fundamentals of risk management, strategies and approaches for mitigating risk, and the anatomy of how to create a plan that reduces risk. It provides a modern and comprehensive view of information security policies and frameworks; examines the technical knowledge and software skills required for policy implementation; explores the creation of an effective IT security policy framework; discusses the latest governance, regulatory mandates, business drives, legal considerations, and much more. --
ER  -