Description |
1 online resource (405 pages) : illustrations |
Bibliography |
Includes bibliographical references. |
Contents |
Introduction -- Ch. 1. Information security auditing and strategy -- Ch. 2. Security auditing, governance, policies and compliance -- Ch. 3. Security assessments classification -- Ch. 4. Advanced pre-assessment planning -- Ch. 5. Security audit strategies and tactics -- Ch. 6. Synthetic evaluation of risks -- Ch. 7. Presenting the outcome and follow-up acts -- Ch. 8. Reviewing security assessment failures and auditor management strategies. |
Summary |
This book deals with the philosophy, strategy and tactics of soliciting, managing and conducting information security audits of all flavours. It will give readers the founding principles around information security assessments and why they are important, whilst providing a fluid framework for developing an astute 'information security mind' capable of rapid adaptation to evolving technologies, markets, regulations, and laws. |
Access |
Electronic resource (access conditions). |
Subject |
Computer security -- Auditing.
|
|
COMPUTERS -- Internet -- Security. |
|
COMPUTERS -- Networking -- Security. |
|
COMPUTERS -- Security -- General. |
|
Computer security -- Auditing |
Added Author |
Gavrilenko, Konstantin V.
|
|
Mikhailovsky, Andrei A.
|
Other Form: |
Print version: 9781849280358 |
ISBN |
9781849280365 (electronic bk.) |
|
1849280363 (electronic bk.) |
|
(Paper) |
|
(Paper) |
|