| Description |
1 online resource (xxv, 240 pages) : illustrations |
| Note |
"An Auerback Book." |
| Summary |
"Securing against operational interruptions and the theft of your data is much too important to leave to chance. By planning for the worst, you can ensure your organization is prepared for the unexpected. Enterprise Architecture and Information Assurance: Developing a Secure Foundation explains how to design complex, highly available, and secure enterprise architectures that integrate the most critical aspects of your organization's business processes. Filled with time-tested guidance, the book describes how to document and map the security policies and procedures needed to ensure cost-effective organizational and system security controls across your entire enterprise. It also demonstrates how to evaluate your network and business model to determine if they fit well together. The book's comprehensive coverage includes:Infrastructure security model componentsSystems security categorizationBusiness impact analysisRisk management and mitigationSecurity configuration managementContingency planningPhysical securityThe certification and accreditation processFacilitating the understanding you need to reduce and even mitigate security liabilities, the book provides sample rules of engagement, lists of NIST and FIPS references, and a sample certification statement. Coverage includes network and application vulnerability assessments, intrusion detection, penetration testing, incident response planning, risk mitigation audits/reviews, and business continuity and disaster recovery planning. Reading this book will give you the reasoning behind why security is foremost. By following the procedures it outlines, you will gain an understanding of your infrastructure and what requires further attention"-- Provided by publisher |
| Bibliography |
Includes bibliographical references and index. |
| Contents |
Chapter 1. Setting the foundation -- chapter 2. Building the enterprise infrastructure -- chapter 3. Infrastructure security model components -- chapter 4. Systems security categorization -- chapter 5. Business impact analysis -- chapter 6. Risk -- chapter 7. Secure configuration management -- chapter 8. Contingency planning -- chapter 9. Cloud computing -- chapter 10. Continuous monitoring -- chapter 11. Physical security -- chapter 12. Building security -- chapter 13. Validating the enterprise. |
| Subject |
Database security.
|
|
Information storage and retrieval systems.
|
|
Management information systems.
|
|
Data protection.
|
|
System design.
|
|
Bases de données -- Sécurité -- Mesures. |
|
Systèmes d'information. |
|
Systèmes d'information de gestion. |
|
Protection de l'information (Informatique) |
|
Conception de systèmes. |
|
information retrieval services. |
|
information storage. |
|
Data protection |
|
Database security |
|
Information storage and retrieval systems |
|
Management information systems |
|
System design |
| Other Form: |
Print version: Scholz, James A. Enterprise architecture and information assurance. Boca Raton, Florida : CRC Press/Taylor & Francis Group, [2014] 9781439841594 (DLC) 2013025176 (OCoLC)823552600 |
| ISBN |
9781439841600 (eBook - PDF) |
|
1439841608 (eBook - PDF) |
|
9781466534803 |
|
146653480X |
|
(hardback ; alk. paper) |
|
(hardback ; alk. paper) |
|
9780429105654 (electronic bk.) |
|
0429105657 (electronic bk.) |
|
More Resources