Information Security
Principles and Practices
2nd Edition
Published on 26. May 2014
368 pages
978-0-13-358963-4 (ISBN)
Description
Information Security: Principles and Practices, Second Edition
Everything You Need to Know About Modern Computer Security, in One Book
Clearly explains all facets of information security in all 10 domains of the latest Information Security Common Body of Knowledge [(ISC) (2) CBK].
Thoroughly updated for today's challenges, technologies, procedures, and best practices.
The perfect resource for anyone pursuing an IT security career.
Fully updated for the newest technologies and best practices, Information Security: Principles and Practices, Second Edition thoroughly covers all 10 domains of today's Information Security Common Body of Knowledge.
Two highly experienced security practitioners have brought together all the foundational knowledge you need to succeed in today's IT and business environments. They offer easy-to-understand, practical coverage of topics ranging from security management and physical security to cryptography and application development security.
This edition fully addresses new trends that are transforming security, from cloud services to mobile applications, "Bring Your Own Device" (BYOD) strategies to today's increasingly rigorous compliance requirements. Throughout, you'll find updated case studies, review questions, and exercises-all designed to reveal today's real-world IT security challenges and help you overcome them.
Learn how to
-- Recognize the evolving role of IT security
-- Identify the best new opportunities in the field
-- Discover today's core information security principles of success
-- Understand certification programs and the CBK
-- Master today's best practices for governance and risk management
-- Architect and design systems to maximize security
-- Plan for business continuity
-- Understand the legal, investigatory, and ethical requirements associated with IT security
-- Improve physical and operational security
-- Implement effective access control systems
-- Effectively utilize cryptography
-- Improve network and Internet security
-- Build more secure software
-- Define more effective security policies and standards
-- Preview the future of information security
Everything You Need to Know About Modern Computer Security, in One Book
Clearly explains all facets of information security in all 10 domains of the latest Information Security Common Body of Knowledge [(ISC) (2) CBK].
Thoroughly updated for today's challenges, technologies, procedures, and best practices.
The perfect resource for anyone pursuing an IT security career.
Fully updated for the newest technologies and best practices, Information Security: Principles and Practices, Second Edition thoroughly covers all 10 domains of today's Information Security Common Body of Knowledge.
Two highly experienced security practitioners have brought together all the foundational knowledge you need to succeed in today's IT and business environments. They offer easy-to-understand, practical coverage of topics ranging from security management and physical security to cryptography and application development security.
This edition fully addresses new trends that are transforming security, from cloud services to mobile applications, "Bring Your Own Device" (BYOD) strategies to today's increasingly rigorous compliance requirements. Throughout, you'll find updated case studies, review questions, and exercises-all designed to reveal today's real-world IT security challenges and help you overcome them.
Learn how to
-- Recognize the evolving role of IT security
-- Identify the best new opportunities in the field
-- Discover today's core information security principles of success
-- Understand certification programs and the CBK
-- Master today's best practices for governance and risk management
-- Architect and design systems to maximize security
-- Plan for business continuity
-- Understand the legal, investigatory, and ethical requirements associated with IT security
-- Improve physical and operational security
-- Implement effective access control systems
-- Effectively utilize cryptography
-- Improve network and Internet security
-- Build more secure software
-- Define more effective security policies and standards
-- Preview the future of information security
More details
Edition
2nd edition
Language
English
Place of publication
Upper Saddle River
United States
Publishing group
Pearson Education (US)
Target group
College/higher education
File size
2,91 MB
ISBN-13
978-0-13-358963-4 (9780133589634)
Copyright in bibliographic data and cover images is held by Nielsen Book Services Limited or by the publishers or by their respective licensors: all rights reserved.
Schweitzer Classification
Other editions
Additional editions
Book
06/2014
2nd Edition
Pearson It Certification
€98.59
Shipment within 3-4 weeks
Persons
Mark Merkow, CISSP, CISM, CSSLP, is a technical director for a Fortune 100 financial services firm, where he works on implementing and operating a software security practice for the enterprise. He has more than 35 years of IT experience, including 20 years in IT security. Mark has worked in a variety of roles, including applications development, systems analysis and design, security engineering, and security management. Mark holds a master's degree in decision and info systems from Arizona State University (ASU), a master's of education in Distance Learning from ASU, and a bachelor's degree in Computer Info Systems from ASU.
Jim Breithaupt is a data integrity manager for a major bank, where he manages risk for a large data mart. He has more than 30 years of data processing experience and has co-authored several other books on information systems and information security, along with Mark Merkow.
Jim Breithaupt is a data integrity manager for a major bank, where he manages risk for a large data mart. He has more than 30 years of data processing experience and has co-authored several other books on information systems and information security, along with Mark Merkow.
Content
Chapter 1: Why Study Information Security?
Chapter 2: Information Security Principles of Success
Chapter 3: Certification Programs and the Common Body of Knowledge
Chapter 4: Governance and Risk Management
Chapter 5: Security Architecture and Design
Chapter 6: Business Continuity Planning and Disaster Recovery Planning
Chapter 7: Law, Investigations, and Ethics
Chapter 8: Physical Security Control
Chapter 9: Operations Security
Chapter 10: Access Control Systems and Methodology
Chapter 11: Cryptography
Chapter 12: Telecommunications, Network, and Internet Security
Chapter 13: Software Development Security
Chapter 14: Securing the Future
Appendix A: Common Body of Knowledge
Appendix B: Security Policy and Standards Taxonomy
Appendix C: Sample Policies
Appendix D: HIPAA Security Rule Standards
Chapter 2: Information Security Principles of Success
Chapter 3: Certification Programs and the Common Body of Knowledge
Chapter 4: Governance and Risk Management
Chapter 5: Security Architecture and Design
Chapter 6: Business Continuity Planning and Disaster Recovery Planning
Chapter 7: Law, Investigations, and Ethics
Chapter 8: Physical Security Control
Chapter 9: Operations Security
Chapter 10: Access Control Systems and Methodology
Chapter 11: Cryptography
Chapter 12: Telecommunications, Network, and Internet Security
Chapter 13: Software Development Security
Chapter 14: Securing the Future
Appendix A: Common Body of Knowledge
Appendix B: Security Policy and Standards Taxonomy
Appendix C: Sample Policies
Appendix D: HIPAA Security Rule Standards
