Security Program and Policies: Principles and Practices (2nd Edition) (Certification/Training)

3.75 avg rating
( 24 ratings by Goodreads )
)  
9780789751676: Security Program and Policies: Principles and Practices (2nd Edition) (Certification/Training)
View all copies of this ISBN edition:
 
 

Everything you need to know about information security programs and policies, in one book

  • Clearly explains all facets of InfoSec program and policy planning, development, deployment, and management
  • Thoroughly updated for today’s challenges, laws, regulations, and best practices
  • The perfect resource for anyone pursuing an information security management career

 

In today’s dangerous world, failures in information security can be catastrophic. Organizations must protect themselves. Protection begins with comprehensive, realistic policies. This up-to-date guide will help you create, deploy, and manage them.

Complete and easy to understand, it explains key concepts and techniques through real-life examples. You’ll master modern information security regulations and frameworks, and learn specific best-practice policies for key industry sectors, including finance, healthcare, online commerce, and small business.

 

If you understand basic information security, you’re ready to succeed with this book. You’ll find projects, questions, exercises, examples, links to valuable easy-to-adapt information security policies...everything you need to implement a successful information security program.

 

Sari Stern Greene, CISSP, CRISC, CISM, NSA/IAM, is an information security practitioner, author, and entrepreneur. She is passionate about the importance of protecting information and critical infrastructure. Sari founded Sage Data Security in 2002 and has amassed thousands of hours in the field working with a spectrum of technical, operational, and management personnel, as  well as boards of directors, regulators, and service providers. Her first text was Tools and Techniques for Securing Microsoft Networks, commissioned by Microsoft to train its partner channel, which was soon followed by the first edition of Security Policies and Procedures: Principles and Practices. She is actively involved in the security community, and speaks regularly at security conferences and workshops. She has been quoted in The New York Times, Wall Street Journal, and on CNN, and CNBC. Since 2010, Sari has served as the chair of the annual Cybercrime Symposium.

 

Learn how to

·         Establish program objectives, elements, domains, and governance

·         Understand policies, standards, procedures, guidelines, and plans—and the differences among them

·         Write policies in “plain language,” with the right level of detail

·         Apply the Confidentiality, Integrity & Availability (CIA) security model

·         Use NIST resources and ISO/IEC 27000-series standards

·         Align security with business strategy

·         Define, inventory, and classify your information and systems

·         Systematically identify, prioritize, and manage InfoSec risks

·         Reduce “people-related” risks with role-based Security Education, Awareness, and Training (SETA)

·         Implement effective physical, environmental, communications, and operational security

·         Effectively manage access control

·         Secure the entire system development lifecycle

·         Respond to incidents and ensure continuity of operations

·         Comply with laws and regulations, including GLBA, HIPAA/HITECH, FISMA, state data security and notification rules, and PCI DSS

 

"synopsis" may belong to another edition of this title.

About the Author:

Sari Greene is an information security practitioner, author, and entrepreneur. She founded Sage Data Security in 2002 and has amassed thousands of hours in the field working with a spectrum of technical, operational, and management personnel as well as board of directors, regulators, and service providers. Sari provided expert witness testimony in the groundbreaking PATCO v. Ocean National Bank case. From 2006 through 2010, she served as the managing director for the MEAPC, a coalition of 24 financial institutions that embrace a mission of preventing information theft and fraud through public education and awareness. Since 2010, she has served as the chair of the annual Cybercrime Symposium held in Portsmouth, New Hampshire. Sari’s first text was Tools and Techniques for Securing Microsoft Networks, commissioned by Microsoft to train its partner channel, followed soon after by the first edition of Security Policies and Procedures: Principles and Practices. She has published a number of articles and whitepapers related to information security and has been quoted in The New York Times, Wall Street Journal, CNN, and on CNBC. She speaks regularly at security conferences and workshops around the country and is a frequent guest lecturer. Sari has an MBA from the University of New Hampshire system and has earned an array of government and industry certifications and accreditations, including ISACA Certification in Risk and Information Systems Control (CRISC), ISACA Certification in Security Management (CISM), ISC2 Certification in Information Systems Security (CISSP), and Microsoft Certified Network Engineer (MCSE), and is certified by the National Security Agency to conduct NSA-IAM assessments for federal government agencies and contractors. You can contact Sari at sari@sarigreene.com or follow her on Twitter @sari_greene.

"About this title" may belong to another edition of this title.

Top Search Results from the AbeBooks Marketplace

1.

Greene, Sari
Published by Brand: Pearson IT Certification (2014)
ISBN 10: 0789751674 ISBN 13: 9780789751676
New Paperback Quantity Available: 1
Seller:
Book Deals
(Lewiston, NY, U.S.A.)

Book Description Brand: Pearson IT Certification, 2014. Paperback. Condition: BRAND NEW. Seller Inventory # 0789751674_abe_bn

More information about this seller | Contact this seller

Buy New
US$ 99.84
Convert currency

Add to Basket

Shipping: FREE
Within U.S.A.
Destination, rates & speeds

2.

Sari Greene
Published by Pearson Education (US), United States (2014)
ISBN 10: 0789751674 ISBN 13: 9780789751676
New Paperback Quantity Available: 1
Seller:
Book Depository International
(London, United Kingdom)

Book Description Pearson Education (US), United States, 2014. Paperback. Condition: New. 2nd edition. Language: English. Brand new Book. Everything you need to know about information security programs and policies, in one book Clearly explains all facets of InfoSec program and policy planning, development, deployment, and management Thoroughly updated for today's challenges, laws, regulations, and best practices The perfect resource for anyone pursuing an information security management career In today's dangerous world, failures in information security can be catastrophic. Organizations must protect themselves. Protection begins with comprehensive, realistic policies. This up-to-date guide will help you create, deploy, and manage them. Complete and easy to understand, it explains key concepts and techniques through real-life examples. You'll master modern information security regulations and frameworks, and learn specific best-practice policies for key industry sectors, including finance, healthcare, online commerce, and small business. If you understand basic information security, you're ready to succeed with this book. You'll find projects, questions, exercises, examples, links to valuable easy-to-adapt information security policies.everything you need to implement a successful information security program. Sari Stern Greene, CISSP, CRISC, CISM, NSA/IAM, is an information security practitioner, author, and entrepreneur. She is passionate about the importance of protecting information and critical infrastructure. Sari founded Sage Data Security in 2002 and has amassed thousands of hours in the field working with a spectrum of technical, operational, and management personnel, as well as boards of directors, regulators, and service providers. Her first text was Tools and Techniques for Securing Microsoft Networks, commissioned by Microsoft to train its partner channel, which was soon followed by the first edition of Security Policies and Procedures: Principles and Practices. She is actively involved in the security community, and speaks regularly at security conferences and workshops. She has been quoted in The New York Times, Wall Street Journal, and on CNN, and CNBC. Since 2010, Sari has served as the chair of the annual Cybercrime Symposium. Learn how to * Establish program objectives, elements, domains, and governance * Understand policies, standards, procedures, guidelines, and plans-and the differences among them * Write policies in "plain language," with the right level of detail * Apply the Confidentiality, Integrity & Availability (CIA) security model * Use NIST resources and ISO/IEC 27000-series standards * Align security with business strategy * Define, inventory, and classify your information and systems * Systematically identify, prioritize, and manage InfoSec risks * Reduce "people-related" risks with role-based Security Education, Awareness, and Training (SETA) * Implement effective physical, environmental, communications, and operational security * Effectively manage access control * Secure the entire system development lifecycle * Respond to incidents and ensure continuity of operations * Comply with laws and regulations, including GLBA, HIPAA/HITECH, FISMA, state data security and notification rules, and PCI DSS. Seller Inventory # AAZ9780789751676

More information about this seller | Contact this seller

Buy New
US$ 99.86
Convert currency

Add to Basket

Shipping: FREE
From United Kingdom to U.S.A.
Destination, rates & speeds

3.

Greene, Sari
ISBN 10: 0789751674 ISBN 13: 9780789751676
New Quantity Available: 1
Seller:
Speedy Hen
(London, United Kingdom)

Book Description Condition: New. Bookseller Inventory # ST0789751674. Seller Inventory # ST0789751674

More information about this seller | Contact this seller

Buy New
US$ 72.42
Convert currency

Add to Basket

Shipping: US$ 37.43
From United Kingdom to U.S.A.
Destination, rates & speeds

4.

Greene, Sari
Published by Pearson Education (US) (2014)
ISBN 10: 0789751674 ISBN 13: 9780789751676
New Softcover Quantity Available: 1
Seller:

Book Description Pearson Education (US), 2014. Condition: New. Num Pages: 648 pages. BIC Classification: KJQ; UTN. Category: (P) Professional & Vocational. Dimension: 178 x 232 x 32. Weight in Grams: 980. . 2014. 2nd Edition. Paperback. . . . . Seller Inventory # V9780789751676

More information about this seller | Contact this seller

Buy New
US$ 104.02
Convert currency

Add to Basket

Shipping: US$ 10.68
From Ireland to U.S.A.
Destination, rates & speeds

5.

Greene, Sari
Published by Pearson IT Certification (2014)
ISBN 10: 0789751674 ISBN 13: 9780789751676
New Paperback Quantity Available: 1
Seller:
The Monster Bookshop
(Fleckney, United Kingdom)

Book Description Pearson IT Certification, 2014. Paperback. Condition: New. BRAND NEW ** SUPER FAST SHIPPING FROM UK WAREHOUSE ** 30 DAY MONEY BACK GUARANTEE. Seller Inventory # mon0005265665

More information about this seller | Contact this seller

Buy New
US$ 105.09
Convert currency

Add to Basket

Shipping: US$ 16.21
From United Kingdom to U.S.A.
Destination, rates & speeds

6.

Sari Greene
Published by Pearson Education (US)
ISBN 10: 0789751674 ISBN 13: 9780789751676
New Paperback / softback Quantity Available: 1
Seller:
THE SAINT BOOKSTORE
(Southport, United Kingdom)

Book Description Pearson Education (US). Paperback / softback. Condition: New. New copy - Usually dispatched within 2 working days. Seller Inventory # B9780789751676

More information about this seller | Contact this seller

Buy New
US$ 108.26
Convert currency

Add to Basket

Shipping: US$ 14.91
From United Kingdom to U.S.A.
Destination, rates & speeds

7.

Greene, Sari
Published by Pearson Education (US)
ISBN 10: 0789751674 ISBN 13: 9780789751676
New Softcover Quantity Available: 1
Seller:
Kennys Bookstore
(Olney, MD, U.S.A.)

Book Description Pearson Education (US). Condition: New. Num Pages: 648 pages. BIC Classification: KJQ; UTN. Category: (P) Professional & Vocational. Dimension: 178 x 232 x 32. Weight in Grams: 980. . 2014. 2nd Edition. Paperback. . . . . Books ship from the US and Ireland. Seller Inventory # V9780789751676

More information about this seller | Contact this seller

Buy New
US$ 121.47
Convert currency

Add to Basket

Shipping: US$ 10.50
Within U.S.A.
Destination, rates & speeds

8.

Greene, Sari
Published by Pearson It Certification (2014)
ISBN 10: 0789751674 ISBN 13: 9780789751676
New Paperback Quantity Available: 1
Seller:
Revaluation Books
(Exeter, United Kingdom)

Book Description Pearson It Certification, 2014. Paperback. Condition: Brand New. 2nd edition. 618 pages. 9.25x7.25x1.25 inches. In Stock. Seller Inventory # __0789751674

More information about this seller | Contact this seller

Buy New
US$ 105.64
Convert currency

Add to Basket

Shipping: US$ 43.67
From United Kingdom to U.S.A.
Destination, rates & speeds

9.

Greene, Sari
Published by Pearson IT Certification
ISBN 10: 0789751674 ISBN 13: 9780789751676
New PAPERBACK Quantity Available: 1
Seller:
SGS Trading Inc
(Franklin Lakes, NJ, U.S.A.)

Book Description Pearson IT Certification. PAPERBACK. Condition: New. 0789751674 New Textbook, Ships with Emailed Tracking from USA. Seller Inventory # Z0789751674ZN

More information about this seller | Contact this seller

Buy New
US$ 268.60
Convert currency

Add to Basket

Shipping: US$ 3.89
Within U.S.A.
Destination, rates & speeds