Information Security
A Manager's Guide to Thwarting Data Thieves and Hackers
Published on 1. March 2008
Book
Hardback
188 pages
978-0-313-34558-6 (ISBN)
Description
Organizations with computer networks, Web sites, and employees carrying laptops and Blackberries face an array of security challenges. Among other things, they need to keep unauthorized people out of the network, thwart Web site hackers, and keep data safe from prying eyes or criminal hands. This book provides a high-level overview of these challenges and more. But it is not for the hard-core IT security engineer who works full time on networks. Instead, it is aimed at the nontechnical executive with responsibility for ensuring that information and assets stay safe and private. Written by a practicing information security officer, Philip Alexander, the book contains the latest information and arms readers with the knowledge they need to make better business decisions.
Information Security: A Manager's Guide to Thwarting Data Thieves and Hackers covers the following technical issues in a nontechnical manner: -The concept of defense in depth -Network design -Business-continuity planning -Authentication and authorization -Providing security for your mobile work force -Hackers and the challenges they can present -Viruses, Trojans, and worms But it doesn't stop there. The book goes beyond the technical and covers highly important topics related to data security like outsourcing, contractual considerations with vendors, data privacy laws, and hiring practices. In short, Alexander gives the reader a 360-degree look at data security: What to be worried about; what to look for; the tradeoffs among cost, efficiency, and speed; what different technologies can and can't do; and how to make sure technical professionals are keeping their eyes on the right ball. Best of all, it conveys information in an understandable way, meaning managers won't need to rely solely on the IT people in their own company-who may speak an entirely different language and have entirely different concerns. Hackers and data thieves are getting smarter and bolder every day. Information Security is your first line of defense.
Information Security: A Manager's Guide to Thwarting Data Thieves and Hackers covers the following technical issues in a nontechnical manner: -The concept of defense in depth -Network design -Business-continuity planning -Authentication and authorization -Providing security for your mobile work force -Hackers and the challenges they can present -Viruses, Trojans, and worms But it doesn't stop there. The book goes beyond the technical and covers highly important topics related to data security like outsourcing, contractual considerations with vendors, data privacy laws, and hiring practices. In short, Alexander gives the reader a 360-degree look at data security: What to be worried about; what to look for; the tradeoffs among cost, efficiency, and speed; what different technologies can and can't do; and how to make sure technical professionals are keeping their eyes on the right ball. Best of all, it conveys information in an understandable way, meaning managers won't need to rely solely on the IT people in their own company-who may speak an entirely different language and have entirely different concerns. Hackers and data thieves are getting smarter and bolder every day. Information Security is your first line of defense.
Reviews / Votes
"From issues of security policay standards, to network and DMZ design, to authentication and authorization, to security issues associated with mobile employees, hackers, snoops, viruses, data privacy laws, overseas outsourcing and more, Information Security is a complete instruction manual that is as informed as it is informative. Up-to-date, reader-friendly, and comprehensive, Information Security is strongly recommended reading for anyone with a management responsibility that includes data security and computer usage, as well as a core addition to professional, corporate, academic, and community library Computer Science & Security reference collections." - Midwest Book Review/Library BookwatchMore details
Language
English
Place of publication
United States
Publishing group
Bloomsbury Publishing Plc
Target group
Professional and scholarly
Dimensions
Height: 240 mm
Width: 161 mm
Thickness: 15 mm
Weight
455 gr
ISBN-13
978-0-313-34558-6 (9780313345586)
Copyright in bibliographic data and cover images is held by Nielsen Book Services Limited or by the publishers or by their respective licensors: all rights reserved.
Schweitzer Classification
Other editions
Additional editions
E-Book
03/2008
1st Edition
Praeger Publishers Inc
€65.99
Available for download
Person
Philip Alexander is Director of Security Operations for a fraud-management company. He began his career in computers back in the late 1980s while serving in the U.S. military. Since then, he has worked in both the public and private sectors in positions including engineer, principal security consultant, security architect, and information technology director. He holds numerous certifications, including the CISSP and ISSMP. Alexander has written numerous articles on data security issues, and he is the author of Data Breach Disclosure Laws: A State-by-State Perspective.
Content
ACKNOWLEDGMENTS PREFACE COMPUTER USE AND DATA SECURITY POLICIES AND STANDARDS NETWORK/DMZ DESIGN DEFENSE IN DEPTH AUTHENTICATION AND AUTHORIZATION SECURITY AND THE MOBILE EMPLOYEE BUSINESS CONTINUITY PLANNING HACKERS, SNOOPS, AND VIRUSES PERSONNEL ISSUES AND HIRING PRACTICES CONTRACTUAL CONSIDERATIONS DATA PRIVACY LAWS OVERSEAS OUTSOURCING APPENDIX A: THE TRUSTED COMPUTER SYSTEM EVALUATION CRITERIA (TCSEC) APPENDIX B: RAINBOW SERIES APPENDIX C: THE INTERNATIONAL ORGANIZATION FOR STANDARDIZATION (ISO) GLOSSARY INDEX ABOUT THE AUTHOR