Security Controls Evaluation, Testing and Assessment Handbook

0 avg rating
( 0 ratings by GoodReads )
 
9780128023242: Security Controls Evaluation, Testing and Assessment Handbook

Security Controls Evaluation, Testing, and Assessment Handbook provides a current and well-developed approach to evaluation and testing of security controls to prove they are functioning correctly in today's IT systems. This handbook shows you how to evaluate, examine, and test installed security controls in the world of threats and potential breach actions surrounding all industries and systems. If a system is subject to external or internal threats and vulnerabilities - which most are - then this book will provide a useful handbook for how to evaluate the effectiveness of the security controls that are in place.

Security Controls Evaluation, Testing, and Assessment Handbook shows you what your security controls are doing and how they are standing up to various inside and outside threats. This handbook provides guidance and techniques for evaluating and testing various computer security controls in IT systems.

Author Leighton Johnson shows you how to take FISMA, NIST Guidance, and DOD actions and provide a detailed, hands-on guide to performing assessment events for information security professionals who work with US federal agencies. As of March 2014, all agencies are following the same guidelines under the NIST-based Risk Management Framework. This handbook uses the DOD Knowledge Service and the NIST Families assessment guides as the basis for needs assessment, requirements, and evaluation efforts for all of the security controls. Each of the controls can and should be evaluated in its own unique way, through testing, examination, and key personnel interviews. Each of these methods is discussed.

  • Provides direction on how to use SP800-53A, SP800-115, DOD Knowledge Service, and the NIST Families assessment guides to implement thorough evaluation efforts for the security controls in your organization.
  • Learn how to implement proper evaluation, testing, and assessment procedures and methodologies with step-by-step walkthroughs of all key concepts.
  • Shows you how to implement assessment techniques for each type of control, provide evidence of assessment, and proper reporting techniques.

"synopsis" may belong to another edition of this title.

About the Author:

Leighton Johnson is the CTO and Senior Security Engineer for Information Security and Forensics Management Team (ISFMT), a provider of computer security, forensics consulting & certification training. He has over 38 years experience in Computer Security, Software Development and Communications Equipment Operations & Maintenance. Primary focus areas have included computer security, information operations & assurance, software system development life cycle focused on modeling & simulation systems, systems engineering and integration activities, anti-terrorism/cyber terrorism, database administration, business process & data modeling. He just completed service as the AT/COOP task lead for a DOD Field Agency, based in Alexandria, VA. He recently was the CIO for a 450 person directorate within Lockheed Martin IS&GS covering 9 locations within the Eastern and Midwestern parts of the U.S. He previously served as Security Operations Program Manager for a US DOD Field Agency, based in Arlington, VA.
He is a member of the CSA CloudSIRT working group developing the model for response collaboration among cloud providers, responders and users; the CSA Security-as-a-Service working group developing the definitions for SECaaS requirements and models, as well as a member of the IEEE Education working groups on Cloud and on Computer Software Security. He recently served as a member of the IS Alliance - NIST joint working group on VOIP SCAP security. He has taught Digital and Network Forensics courses at Georgia Regents University. He holds CISM (Certified Information Security Manager), CISA (Certified Information Systems Auditor), CISSP (Certified Information Systems Security Professional), CIFI (Certified Information Forensics Investigator), CSSLP (Certified Secure Software Lifecycle Professional), CAP (Certified Authorization Professional), CRISC (Certified in Risk & Information Systems Control), CMAS (Certified Master Antiterrorism Specialist), CAS-CTR (Certified Antiterrorism Specialist - Cyber Terrorism Response) and MBCI (Certified Member Business Continuity Institute) credentials.

"About this title" may belong to another edition of this title.

Buy New View Book
List Price: US$ 74.95
US$ 48.65

Convert Currency

Shipping: US$ 5.59
From United Kingdom to U.S.A.

Destination, Rates & Speeds

Add to Basket

Top Search Results from the AbeBooks Marketplace

1.

Johnson, Leighton
Published by Syngress Media,U.S. 2015-12-15, Rockland, MA (2015)
ISBN 10: 0128023244 ISBN 13: 9780128023242
New paperback Quantity Available: > 20
Seller
Blackwell's
(Oxford, OX, United Kingdom)
Rating
[?]

Book Description Syngress Media,U.S. 2015-12-15, Rockland, MA, 2015. paperback. Book Condition: New. Bookseller Inventory # 9780128023242

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 48.65
Convert Currency

Add to Basket

Shipping: US$ 5.59
From United Kingdom to U.S.A.
Destination, Rates & Speeds

2.

Johnson, Leighton
Published by Syngress Media,U.S., United States (2016)
ISBN 10: 0128023244 ISBN 13: 9780128023242
New Paperback Quantity Available: 1
Seller
The Book Depository
(London, United Kingdom)
Rating
[?]

Book Description Syngress Media,U.S., United States, 2016. Paperback. Book Condition: New. 235 x 190 mm. Language: English . Brand New Book. Security Controls Evaluation, Testing, and Assessment Handbook provides a current and well-developed approach to evaluation and testing of security controls to prove they are functioning correctly in today s IT systems. This handbook shows you how to evaluate, examine, and test installed security controls in the world of threats and potential breach actions surrounding all industries and systems. If a system is subject to external or internal threats and vulnerabilities - which most are - then this book will provide a useful handbook for how to evaluate the effectiveness of the security controls that are in place. Security Controls Evaluation, Testing, and Assessment Handbook shows you what your security controls are doing and how they are standing up to various inside and outside threats. This handbook provides guidance and techniques for evaluating and testing various computer security controls in IT systems. Author Leighton Johnson shows you how to take FISMA, NIST Guidance, and DOD actions and provide a detailed, hands-on guide to performing assessment events for information security professionals who work with US federal agencies. As of March 2014, all agencies are following the same guidelines under the NIST-based Risk Management Framework. This handbook uses the DOD Knowledge Service and the NIST Families assessment guides as the basis for needs assessment, requirements, and evaluation efforts for all of the security controls. Each of the controls can and should be evaluated in its own unique way, through testing, examination, and key personnel interviews. Each of these methods is discussed. Bookseller Inventory # AAU9780128023242

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 55.31
Convert Currency

Add to Basket

Shipping: FREE
From United Kingdom to U.S.A.
Destination, Rates & Speeds

3.

Johnson, Leighton
Published by Syngress Media,U.S. (2015)
ISBN 10: 0128023244 ISBN 13: 9780128023242
New Softcover First Edition Quantity Available: 1
Rating
[?]

Book Description Syngress Media,U.S., 2015. Book Condition: New. Num Pages: 700 pages, Illustrated. BIC Classification: UR. Category: (P) Professional & Vocational. Dimension: 235 x 191. . . 2015. 1st Edition. Paperback. . . . . . Bookseller Inventory # V9780128023242

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 58.17
Convert Currency

Add to Basket

Shipping: FREE
From Ireland to U.S.A.
Destination, Rates & Speeds

4.

Johnson, Leighton
Published by Syngress Media,U.S.
ISBN 10: 0128023244 ISBN 13: 9780128023242
New Softcover Quantity Available: 1
Seller
Kennys Bookstore
(Olney, MD, U.S.A.)
Rating
[?]

Book Description Syngress Media,U.S. Book Condition: New. Num Pages: 700 pages, Illustrated. BIC Classification: UR. Category: (P) Professional & Vocational. Dimension: 235 x 191. . . 2015. 1st Edition. Paperback. . . . . Books ship from the US and Ireland. Bookseller Inventory # V9780128023242

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 58.77
Convert Currency

Add to Basket

Shipping: FREE
Within U.S.A.
Destination, Rates & Speeds

5.

Johnson, Leighton
Published by Syngress Media,U.S.
ISBN 10: 0128023244 ISBN 13: 9780128023242
New Paperback Quantity Available: 2
Seller
THE SAINT BOOKSTORE
(Southport, United Kingdom)
Rating
[?]

Book Description Syngress Media,U.S. Paperback. Book Condition: new. BRAND NEW, Security Controls Evaluation, Testing and Assessment Handbook, Leighton Johnson, Security Controls Evaluation, Testing, and Assessment Handbook provides a current and well-developed approach to evaluation and testing of security controls to prove they are functioning correctly in today's IT systems. This handbook shows you how to evaluate, examine, and test installed security controls in the world of threats and potential breach actions surrounding all industries and systems. If a system is subject to external or internal threats and vulnerabilities - which most are - then this book will provide a useful handbook for how to evaluate the effectiveness of the security controls that are in place. Security Controls Evaluation, Testing, and Assessment Handbook shows you what your security controls are doing and how they are standing up to various inside and outside threats. This handbook provides guidance and techniques for evaluating and testing various computer security controls in IT systems. Author Leighton Johnson shows you how to take FISMA, NIST Guidance, and DOD actions and provide a detailed, hands-on guide to performing assessment events for information security professionals who work with US federal agencies. As of March 2014, all agencies are following the same guidelines under the NIST-based Risk Management Framework. This handbook uses the DOD Knowledge Service and the NIST Families assessment guides as the basis for needs assessment, requirements, and evaluation efforts for all of the security controls. Each of the controls can and should be evaluated in its own unique way, through testing, examination, and key personnel interviews. Each of these methods is discussed. * Provides direction on how to use SP800-53A, SP800-115, DOD Knowledge Service, and the NIST Families assessment guides to implement thorough evaluation efforts for the security controls in your organization.* Learn how to implement proper evaluation, testing, and assessment procedures and methodologies with step-by-step walkthroughs of all key concepts.* Shows you how to implement assessment techniques for each type of control, provide evidence of assessment, and proper reporting techniques. Bookseller Inventory # B9780128023242

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 51.59
Convert Currency

Add to Basket

Shipping: US$ 7.38
From United Kingdom to U.S.A.
Destination, Rates & Speeds

6.

Johnson, Leighton
ISBN 10: 0128023244 ISBN 13: 9780128023242
New Quantity Available: 2
Seller
BWB
(Valley Stream, NY, U.S.A.)
Rating
[?]

Book Description Book Condition: New. Depending on your location, this item may ship from the US or UK. Bookseller Inventory # 97801280232420000000

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 60.58
Convert Currency

Add to Basket

Shipping: FREE
Within U.S.A.
Destination, Rates & Speeds

7.

Johnson, Leighton
ISBN 10: 0128023244 ISBN 13: 9780128023242
New Paperback Quantity Available: 2
Seller
Ria Christie Collections
(Uxbridge, United Kingdom)
Rating
[?]

Book Description Paperback. Book Condition: New. Not Signed; Security Controls Evaluation, Testing, and Assessment Handbook provides a current and well-developed approach to evaluation and testing of security controls to prove they are functioning correctly in today's IT systems. This handbook shows you how to evaluate, examine, and test installed security co. book. Bookseller Inventory # ria9780128023242_rkm

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 57.18
Convert Currency

Add to Basket

Shipping: US$ 4.15
From United Kingdom to U.S.A.
Destination, Rates & Speeds

8.

Johnson, Leighton
Published by Syngress (2015)
ISBN 10: 0128023244 ISBN 13: 9780128023242
New Quantity Available: 1
Seller
Books2Anywhere
(Fairford, GLOS, United Kingdom)
Rating
[?]

Book Description Syngress, 2015. PAP. Book Condition: New. New Book. Shipped from UK in 4 to 14 days. Established seller since 2000. Bookseller Inventory # BB-9780128023242

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 51.87
Convert Currency

Add to Basket

Shipping: US$ 11.19
From United Kingdom to U.S.A.
Destination, Rates & Speeds

9.

Johnson, Leighton
Published by Syngress (2015)
ISBN 10: 0128023244 ISBN 13: 9780128023242
New Paperback Quantity Available: 1
Seller
Herb Tandree Philosophy Books
(Stroud, GLOS, United Kingdom)
Rating
[?]

Book Description Syngress, 2015. Paperback. Book Condition: NEW. 9780128023242 This listing is a new book, a title currently in-print which we order directly and immediately from the publisher. Bookseller Inventory # HTANDREE0972462

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 58.90
Convert Currency

Add to Basket

Shipping: US$ 9.95
From United Kingdom to U.S.A.
Destination, Rates & Speeds

10.

Johnson, Leighton
Published by Syngress (2015)
ISBN 10: 0128023244 ISBN 13: 9780128023242
New Paperback Quantity Available: 1
Seller
Herb Tandree Philosophy Books
(Stroud, GLOS, United Kingdom)
Rating
[?]

Book Description Syngress, 2015. Paperback. Book Condition: NEW. 9780128023242 This listing is a new book, a title currently in-print which we order directly and immediately from the publisher. Bookseller Inventory # HTANDREE01200260

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 58.90
Convert Currency

Add to Basket

Shipping: US$ 9.95
From United Kingdom to U.S.A.
Destination, Rates & Speeds

There are more copies of this book

View all search results for this book