The Security Risk Assessment Handbook: A Complete Guide for Performing Security Risk Assessments
- ISBN-10
- 1000413209
- ISBN-13
- 9781000413205
- Series
- The Security Risk Assessment Handbook
- Category
- Business & Economics
- Pages
- 512
- Language
- English
- Published
- 2021-09-27
- Publisher
- CRC Press
- Author
- Douglas Landoll
Description
Conducted properly, information security risk assessments provide managers with the feedback needed to manage risk through the understanding of threats to corporate assets, determination of current control vulnerabilities, and appropriate safeguards selection. Performed incorrectly, they can provide the false sense of security that allows potential threats to develop into disastrous losses of proprietary information, capital, and corporate value. Picking up where its bestselling predecessors left off, The Security Risk Assessment Handbook: A Complete Guide for Performing Security Risk Assessments, Third Edition gives you detailed instruction on how to conduct a security risk assessment effectively and efficiently, supplying wide-ranging coverage that includes security risk analysis, mitigation, and risk assessment reporting. The third edition has expanded coverage of essential topics, such as threat analysis, data gathering, risk analysis, and risk assessment methods, and added coverage of new topics essential for current assessment projects (e.g., cloud security, supply chain management, and security risk assessment methods). This handbook walks you through the process of conducting an effective security assessment, and it provides the tools, methods, and up-to-date understanding you need to select the security measures best suited to your organization. Trusted to assess security for small companies, leading organizations, and government agencies, including the CIA, NSA, and NATO, Douglas J. Landoll unveils the little-known tips, tricks, and techniques used by savvy security professionals in the field. It includes features on how to Better negotiate the scope and rigor of security assessments Effectively interface with security assessment teams Gain an improved understanding of final report recommendations Deliver insightful comments on draft reports This edition includes detailed guidance on gathering data and analyzes over 200 administrative, technical, and physical controls using the RIIOT data gathering method; introduces the RIIOT FRAME (risk assessment method), including hundreds of tables, over 70 new diagrams and figures, and over 80 exercises; and provides a detailed analysis of many of the popular security risk assessment methods in use today. The companion website (infosecurityrisk.com) provides downloads for checklists, spreadsheets, figures, and tools.
Get the book
Other editions
-
- 2021-09-28
- 490 pages
- Paperback
- CRC Press
-
- 2016-04-19
- 504 pages
- Ebook
- CRC Press
-
- 2011-05-23
- 495 pages
- Paperback
- CRC Press
-
- 2005-12-12
- 504 pages
- Paperback
- CRC Press
Similar books
-
International Handbook of Threat Assessment
By J. Reid Meloy, Jens Hoffmann"This introductory chapter sets forth three foundations for threat assessment and management: the first foundation is the defining of basic concepts, such as threat assessment and threat management; the second foundation outlines the ...
-
Information Security Handbook: Develop a threat model and incident response strategy to build a strong information security framework
By Darren DeathStyle and approach This book takes a practical approach, walking you through information security fundamentals, along with information security best practices.
-
Security Controls Evaluation, Testing, and Assessment Handbook
By Leighton JohnsonThis handbook shows you how to evaluate, examine, and test installed security controls in the world of threats and potential breach actions surrounding all industries and systems.
-
Critical Infrastructure Risk Assessment: The Definitive Threat Identification and Threat Reduction Handbook
By CISSP, Ernie Hayden, MIPMThis is a definite “must read” for consultants, plant managers, corporate risk managers, junior and senior engineers, and university students before they jump into their first technical assignment.
-
The Security Risk Handbook: Assess, Survey, Audit
By Charles SwansonThe Security Risk Handbook assists businesses that need to be able to carry out effective security risk assessments, security surveys, and security audits.
-
Cloud Computing Protected: Security Assessment Handbook
By David Graves, Jan De Clercq, John Rhoton"Cloud Computing Protected" describes the most important security challenges that organizations face by adopting public cloud services and implementing cloud-based infrastructure.
-
The Palgrave Handbook of Security, Risk and Intelligence
By Michael S. Goodman, Robert Dover, Huw DylanThis handbook provides a detailed analysis of threats and risk in the international system and of how governments and their intelligence services must adapt and function in order to manage the evolving security environment.
-
Security Risk Management Body of Knowledge
By Julian Talbot, Miles JakemanThis is an indispensable resource for risk and security professional, students, executive management, and line managers with security responsibilities.
-
Information Security Risk Assessment Toolkit: Practical Assessments Through Data Collection and Data Analysis
By Jason Martin, Mark TalabisThis is the true value and purpose of information security risk assessments.
-
Violence Assessment and Intervention: The Practitioner's Handbook, Second Edition
By James S. Cawood, Florian, Michael H. Corcoran Ph.D.The next statistical window of significant probability is 14 days after a significant event. After that, re-engagement or “probing” behavior most likely will occur (calls, letters, e-mails, physical approaches with attempted ...