Managing Risk in Information Systems available in Paperback
PART OF THE NEW JONES & BARTLETT LEARNING INFORMATION SYSTEMS SECURITY & ASSURANCE SERIES!
Managing Risk in Information Systems provides a unique, in-depth look at how to manage and reduce IT associated risks. Written by an industry expert, this book provides a comprehensive explanation of the SSCP® Risk, Response, and Recovery Domain in addition to providing a thorough overview of risk management and its implications on IT infrastructures and compliance. Using examples and exercises, this book incorporates hands-on activities to walk the reader through the fundamentals of risk management, strategies and approaches for mitigating risk, and the anatomy of how to create a plan that reduces risk.
|Publisher:||Jones & Bartlett Learning|
|Product dimensions:||6.00(w) x 1.25(h) x 9.00(d)|
About the Author
ISC)2 SSCP and CISSP, CompTIA Security+ and CASP, CEO of YCDA (You Can Do Anything)
Table of Contents
Part 1 Risk Management Business Challenges Chapter 1 Risk Management Fundamentals Chapter 2 Managing Risk: Threats, Vulnerabilities, and Exploits Chapter 3 Maintaining Compliance Chapter 4 Developing a Risk Management Plan Part 2 Mitigating Risk Chapter 5 Defining Risk Assessment Approaches Chapter 6 Performing a Risk Assessment Chapter 7 Identifying Assets and Activities to Be Protected Chapter 8 Identifying and Analyzing Threats, Vulnerabilities, and Exploits Chapter 9 Identifying and Analyzing Risk Mitigation Security Controls Chapter 10 Planning Risk Mitigation Throughout the Organization Chapter 11 Turning Your Risk Assessment into a Risk Mitigation Plan Part 3 Risk Mitigation Plans Chapter 12 Mitigating Risk with a Business Impact Analysis Chapter 13 Mitigating Risk with a Business Continuity Plan Chapter 14 Mitigating Risk with a Disaster Recovery Plan Chapter 15 Mitigating Risk with a Computer Incident Response Team Plan