The CISO Handbook: A Practical Guide to Securing Your Company

Portada
CRC Press, 2016 M04 19 - 352 páginas
The CISO Handbook: A Practical Guide to Securing Your Company provides unique insights and guidance into designing and implementing an information security program, delivering true value to the stakeholders of a company. The authors present several essential high-level concepts before building a robust framework that will enable you to map the conc

Dentro del libro

Páginas seleccionadas

Contenido

1 Assess
1
2 Plan
48
3 Design
94
4 Execute
137
5 Report
186
6 The Final Phase
228
Appendix A
231
Appendix B
235
Appendix C
239
Appendix D
243
Appendix E
267
Index
268
Derechos de autor

Otras ediciones - Ver todas

Términos y frases comunes

Pasajes populares

Página 32 - Associate yourself with men of good quality, if you esteem your own reputation : for it is better to be alone, than in bad company.
Página 63 - SANS is the most trusted and by far the largest source for information security training and certification in the world. It also develops, maintains, and makes available at no cost, the largest collection of research documents about various aspects of information security, and it operates the Internet's early warning system - Internet Storm Center.
Página 108 - When dealing with people, remember you are not dealing with creatures of logic, but with creatures of emotion, creatures bristling with prejudice and motivated by pride and vanity.
Página 117 - JUST as the constant increase of entropy is the basic law of the universe, so it is the basic law of life to be ever more highly structured and to struggle against entropy. Life rebels against all uniformity and levelling; its aim is not sameness but variety, the restlessness of transcendence, the adventure of novelty and rebellion against the status quo.
Página 61 - The first method for estimating the intelligence of a ruler is to look at the men he has around him.
Página 63 - The SANS Institute enables more than 156,000 security professionals, auditors, system administrators, and network administrators to share the lessons it is learning and find solutions to the challenges it faces.
Página 230 - All speech, written or spoken, is a dead language, until it finds a willing and prepared hearer.
Página 95 - People who work together will win, whether it be against complex football defenses, or the problems of modern society.

Acerca del autor (2016)

Mike Gentile is on a mission to change the status quo in Information Security as we know it. His goal is to translate the discipline from one that is often misunderstood, inefficiently applied, and painful to one that is seamless, collaborative, and repeatable in organizations across the globe. Delphiis is the encapsulation of this mission. Mike brings balance of business acumen and technical skill-set anchored by years in the field and his core focus over the past 15 years has been his practice, Coastline Consulting services. As the Founder and President, Coastline has developed enterprise security programs for countless leading public, private, and government organizations, including many within the Global 1000 and Fortune 500. During that time he also became Co-Founder and Editor for CISOHandbook.com, the leading portal for security leaders.As a researcher, Mike has contributed numerous publications within the Information technology, project management, and security communities. He is also a senior researcher with Computer Economics in the Information Security domain and has written articles for the ISSA Journal, Computer Economics, RSA Conference and Secure World Expo.

As a writer he is the co-author of The CISO Handbook: A Practical Guide to Securing Your Company as well as CISO Soft Skills: Securing Organizations Impaired by Employee Politics, Apathy, and Intolerant Perspectives. The CISO Handbook is used as course material for numerous advanced education and Master's programs on security leadership around the world. Mr. Gentile serves on multiple advisory boards, including being on the Board of Advisors for Savant.

Información bibliográfica