Page Tools:

Managing Risk in Information Systems

Author(s): Darril Gibson
  • ISBN-13: 9780763791872
  • Paperback    454 pages      © 2011
Price: International Sales $99.95 US List
Add to Cart Request a Review Copy

Customize your Text with SharedBook.


Managing Risk in Information Systems provides a unique, in-depth look at how to manage and reduce IT associated risks. Written by an industry expert, this book provides a comprehensive explanation of the SSCP® Risk, Response, and Recovery Domain in addition to providing a thorough overview of risk management and its implications on IT infrastructures and compliance. Using examples and exercises, this book incorporates hands-on activities to walk the reader through the fundamentals of risk management, strategies and approaches for mitigating risk, and the anatomy of how to create a plan that reduces risk. 

Instructor's Material for Managing Risk in Information Systems include:

  • PowerPoint Lecture Slides
  • Instructor's Guide
  • Course Syllabus
  • Quiz & Exam Questions
  • Case Scenarios/Handouts
About the Series

Visit for a complete look at the series!

This book is part of the  Information Systems Security and Assurance Series from Jones and Bartlett Learning ( Designed for courses and curriculums in IT Security, Cybersecurity, Information Assurance, and Information Systems Security, this series features a comprehensive, consistent treatment of the most current thinking and trends in this critical subject area. These titles deliver fundamental information-security principles packed with real-world applications and examples.  Authored by Certified Information Systems Security Professionals (CISSPs),  they deliver comprehensive information on all aspects of information security. Reviewed word for word by leading technical experts in the field, these books are not just current, but forward-thinking—putting you in the position to solve the cybersecurity challenges not just of today, but of tomorrow, as well.

Interested in learning more? Visit our Navigate website.


Features & Benefits

  • Introduces the fundamentals of risk and risk management
  • Illustrates how to identify and analyze threats and vulnerabilities as well as evaluate security controls to mitigate risk
  • Discusses how to translate a risk assessment into a risk management plan
  • Identifies how to perform a business impact analysis and the differences between business continuity plans and disaster recovery plans

Applicable Courses

Written for IT students and professionals looking to gain a greater understanding of risk management related to IT infrastructures.

Part  1  Risk Management Business Challenges
  Chapter  1  Risk Management Fundamentals
  Chapter  2  Managing Risk: Threats, Vulnerabilities, and Exploits
  Chapter  3  Maintaining Compliance
  Chapter  4  Developing a Risk Management Plan
Part  2  Mitigating Risk
  Chapter  5  Defining Risk Assessment Approaches
  Chapter  6  Performing a Risk Assessment
  Chapter  7  Identifying Assets and Activities to Be Protected
  Chapter  8  Identifying and Analyzing Threats, Vulnerabilities, and Exploits
  Chapter  9  Identifying and Analyzing Risk Mitigation Security Controls
  Chapter  10  Planning Risk Mitigation Throughout the Organization
  Chapter  11  Turning Your Risk Assessment into a Risk Mitigation Plan
Part  3  Risk Mitigation Plans
  Chapter  12  Mitigating Risk with a Business Impact Analysis
  Chapter  13  Mitigating Risk with a Business Continuity Plan
  Chapter  14  Mitigating Risk with a Disaster Recovery Plan
  Chapter  15  Mitigating Risk with a Computer Incident Response Team Plan

Darril Gibson

Darril Gibson is an IT trainer who regularly teaches security topics to Air Force personnel. An adjunct professor, he’s written or co-authored several IT books, including CompTIA Security+: Get Certified Get Ahead, and Mastering Windows Server 2008 R2. In addition, he’s also created training videos on multiple topics for Keystone Learning. Mr. Gibson holds numerous certifications, including (ISC)2 CISSP and CompTIA Security+. He’s also been a Microsoft Certified Trainer since 1999.

Additional Titles by this Author

The following instructor resources are available to qualified instructors for download

ISBN-13: 9780763791872

Additional Resources for Instructors
Answers to Lab Exercises
BlackBoard ready Test Bank
Instructor Manual
Moodle ready Test Bank
Project Answers
Sample Syllabus
Slides in PowerPoint Format
Test Bank

Laboratory Manual to accomapny Managing Risk in Information Systems

ISBN-13: 9781449638481 ISBN-10: 1449638481

The Laboratory Manual to Accompany Managing Risk in Information Systems is the lab companion to Darril Gibson's Managing Risk in Information Systems. It provides hands-on exercises, each with measurable learning outcomes