Mark Rhodes-Ousley, CISSP, CISM, MCSE, has specialized in information security for nearly 20 years. He advised, designed, and installed security technologies and policies for dozens of companies beginning with California’s first Internet firewall installation in Santa Clara County. Rhodes-Ousley’s rich experience includes security management for companies such as SunPower, Merrill Lynch, National City Bank, Robert Half International, PG&E, Clorox, The Gap, Sun Microsystems, Hitachi Data Systems, and Aspect Communications. Mark was a co-author of the first edition of this book, titled Network Security The Complete Reference.
Information Security: The Complete Reference, Second Editionby Mark Rhodes-Ousley
Today’s complex world of mobile platforms, cloud computing, and ubiquitous data access puts new security demands on every IT professional. Information Security: The Complete Reference, Second Edition (previously titled Network Security: The Complete Reference) is the only/i>/i>
Develop and implement an effective end-to-end security program
Today’s complex world of mobile platforms, cloud computing, and ubiquitous data access puts new security demands on every IT professional. Information Security: The Complete Reference, Second Edition (previously titled Network Security: The Complete Reference) is the only comprehensive book that offers vendor-neutral details on all aspects of information protection, with an eye toward the evolving threat landscape. Thoroughly revised and expanded to cover all aspects of modern information security—from concepts to details—this edition provides a one-stop reference equally applicable to the beginner and the seasoned professional.
Find out how to build a holistic security program based on proven methodology, risk analysis, compliance, and business needs. You’ll learn how to successfully protect data, networks, computers, and applications. In-depth chapters cover data protection, encryption, information rights management, network security, intrusion detection and prevention, Unix and Windows security, virtual and cloud security, secure application development, disaster recovery, forensics, and real-world attacks and countermeasures. Included is an extensive security glossary, as well as standards-based references. This is a great resource for professionals and students alike.
- Understand security concepts and building blocks
- Identify vulnerabilities and mitigate risk
- Optimize authentication and authorization
- Use IRM and encryption to protect unstructured data
- Defend storage devices, databases, and software
- Protect network routers, switches, and firewalls
- Secure VPN, wireless, VoIP, and PBX infrastructure
- Design intrusion detection and prevention systems
- Develop secure Windows, Java, and mobile applications
- Perform incident response and forensic analysis
Meet the Author
and post it to your social network
Most Helpful Customer Reviews
See all customer reviews >