Customize your Text with SharedBook.
PART OF THE NEW JONES & BARTLETT LEARNING INFORMATION SYSTEMS SECURITY & ASSURANCE SERIES
Managing Risk in Information Systems provides a unique, in-depth look at how to manage and reduce IT associated risks. Written by an industry expert, this book provides a comprehensive explanation of the SSCP® Risk, Response, and Recovery Domain in addition to providing a thorough overview of risk management and its implications on IT infrastructures and compliance. Using examples and exercises, this book incorporates hands-on activities to walk the reader through the fundamentals of risk management, strategies and approaches for mitigating risk, and the anatomy of how to create a plan that reduces risk.
Instructor's Material for Managing Risk in Information Systems include:
PowerPoint Lecture Slides
Quiz & Exam Questions
This book is part of the Information Systems Security and Assurance Series from Jones and Bartlett Learning (www.jblearning.com). Designed for courses and curriculums in IT Security, Cybersecurity, Information Assurance, and Information Systems Security, this series features a comprehensive, consistent treatment of the most current thinking and trends in this critical subject area. These titles deliver fundamental information-security principles packed with real-world applications and examples. Authored by Certified Information Systems Security Professionals (CISSPs), they deliver comprehensive information on all aspects of information security. Reviewed word for word by leading technical experts in the field, these books are not just current, but forward-thinking—putting you in the position to solve the cybersecurity challenges not just of today, but of tomorrow, as well.
Interested in learning more? Visit our Navigate website.
Features & Benefits
- Introduces the fundamentals of risk and risk management
- Illustrates how to identify and analyze threats and vulnerabilities as well as evaluate security controls to mitigate risk
- Discusses how to translate a risk assessment into a risk management plan
- Identifies how to perform a business impact analysis and the differences between business continuity plans and disaster recovery plans
Written for IT students and professionals looking to gain a greater understanding of risk management related to IT infrastructures.
Part 1 Risk Management Business Challenges
Chapter 1 Risk Management Fundamentals
Chapter 2 Managing Risk: Threats, Vulnerabilities, and Exploits
Chapter 3 Maintaining Compliance
Chapter 4 Developing a Risk Management Plan
Part 2 Mitigating Risk
Chapter 5 Defining Risk Assessment Approaches
Chapter 6 Performing a Risk Assessment
Chapter 7 Identifying Assets and Activities to Be Protected
Chapter 8 Identifying and Analyzing Threats, Vulnerabilities, and Exploits
Chapter 9 Identifying and Analyzing Risk Mitigation Security Controls
Chapter 10 Planning Risk Mitigation Throughout the Organization
Chapter 11 Turning Your Risk Assessment into a Risk Mitigation Plan
Part 3 Risk Mitigation Plans
Chapter 12 Mitigating Risk with a Business Impact Analysis
Chapter 13 Mitigating Risk with a Business Continuity Plan
Chapter 14 Mitigating Risk with a Disaster Recovery Plan
Chapter 15 Mitigating Risk with a Computer Incident Response Team Plan
Darril Gibson is an IT trainer who regularly teaches security topics to Air Force personnel. An adjunct professor, he’s written or co-authored several IT books, including CompTIA Security+: Get Certified Get Ahead, and Mastering Windows Server 2008 R2. In addition, he’s also created training videos on multiple topics for Keystone Learning. Mr. Gibson holds numerous certifications, including (ISC)2 CISSP and CompTIA Security+. He’s also been a Microsoft Certified Trainer since 1999.