Information Security A Practical Guide: Bridging The Gap Between IT And Management - Softcover

About the Author

Tom Mooney has over 10 years' IT experience working with sensitive information. Currently HM Land Registry's information security risk advisor, where he works with project teams and the wider business to deliver key business systems securely, his key responsibility is to act as an intermediary between management and IT teams to ensure appropriate security controls are put in place. His extensive experience has led him to develop many skills and techniques to converse with people who are not technical or information security experts. Many of these are found in this book. He has a BSc (Hons) in information and computer security, and is also a CESG certified professional.

From the Back Cover

Corporate information security is often hindered by a lack of adequate communication between the security team and the rest of the organisation: many consider information security a block, not a benefit, and view security professionals with suspicion.

Information Security – A Practical Guide addresses that issue by providing a broad overview of basic information security practices that will enable your security team to better engage with their peers in order to address the threats facing the organisation as a whole. Topics covered include:

• How to understand the security culture of the organisation
• Getting to know the organisation and building relationships with key personnel
• How to identify gaps in the organisation’s security set-up
• Identifying, categorising and prioritising risks
• The five levels of risk appetite and how to apply risk treatments via security controls
• How to raise security awareness and engage with specific peer groups
• The importance of conducting regular penetration testing and what to do with the results
• A standards-based approach to information security

If you’re starting a new job as an information security professional, Information Security – A Practical Guide contains all you need to know.

Tom Mooney has over 10 years’ IT experience working with sensitive information. Currently HM Land Registry’s information security risk advisor, where he works with project teams and the wider business to deliver key business systems securely, his key responsibility is to act as an intermediary between management and IT teams to ensure appropriate security controls are put in place. His extensive experience has led him to develop many skills and techniques to converse with people who are not technical or information security experts. Many of these are found in this book. He has a BSc (Hons) in information and computer security and is also a CESG certified professional.