Page Tools:

Security Policies and Implementation Issues, Second Edition

Author(s): Robert Johnson
  • ISBN-13: 9781284055993
  • Paperback    500 pages      © 2015
Price: $99.95 US List
Add to Cart Request a Review Copy

Case Study Labs are now available on Navigate 2! Bundles and Lab Access are available on the Ordering Options tab. For questions about ordering this title, please contact

Security Policies and Implementation Issues, Second Edition offers a comprehensive, end-to-end view of information security policies and frameworks from the raw organizational mechanics of building to the psychology of implementation. Written by an industry expert, it presents an effective balance between technical knowledge and soft skills, and introduces many different concepts of information security in clear simple terms such as governance, regulator mandates, business drivers, legal considerations, and much more. With step-by-step examples and real-world exercises, this book is a must-have resource for students, security officers, auditors, and risk leaders looking to fully understand the process of implementing successful sets of security policies and frameworks.

Part of the Jones & Bartlett Learning Information Systems Security & Assurance Series! Click here to learn more:

Applicable Courses

Written for IT students and professionals hoping to gain knowledge in security policies and information security systems.

Chapter  1: Governance and Information Security Policy Management  
Chapter  2: Business Drivers for Information Security Policies  
Chapter  3: U.S. Compliance Laws and Information Security Policy Requirements  
Chapter  4: Business Challenges Within the Seven Domains of IT Responsibility   
Chapter  5: Information Security Policy Implementation Issues  
Chapter  6: IT Security Policy Frameworks  
Chapter  7: How to Design, Organize, Implement, and Maintain IT Security Policies  
Chapter  8: IT Security Policy Framework Approaches  
Chapter  9: User Domain Policies  
Chapter  10: IT Infrastructure Security Policies  
Chapter  11: Data Classification and Handling Policies and Risk Management Policies  
Chapter  12: Incident Response Team (IRT) Policies  
Chapter  13: IT Security Policy Implementations  
Chapter  14: IT Security Policy Enforcement  
Chapter  15: IT Policy Compliance Systems and Emerging Technologies  

Robert Johnson

Robert Johnson (CISA, CGEIT, CISM, CISSP) has 20 years experience dealing with all aspects of information security, IT audit, risk management, and privacy compliance. His diverse background includes hands-on operational experience as well as providing strategic risk assessment and scoring for leadership and board-level audiences. Currently he works in the security risk management division of a large financial services insurance company. Previously he worked as a first vice president and IT audit and security advisory director at Washington Mutual (JP Morgan Chase).

The following instructor resources are available to qualified instructors for download

ISBN-13: 9781284055993

Answers to Lab Exercises
BlackBoard ready Test Bank
Moodle ready Test Bank
Project Answers
Teaching Tools
Test Bank

Laboratory Manual to Accompany Security Policies and Implementation Issues

ISBN-13: 9781284059168

This lab manual provides a step-by-step guide to completing hands-on experiences using techniques and tools used in real-world scenarios.


Print Bundle

Bundle ISBN: 9781284143454
Print Textbook & Case Study Lab Access. Please confirm the ISBNs used in your course with your instructor before placing your order. Your institution may use a custom integration or access portal that requires a specialized access code.

E-Book Bundle

Bundle ISBN: 9781284143416
Vitalsource E-Book & Virtual Lab Access - printed access cards, fulfilled via Fedex. For electronic delivery, please purchase your bundle from the Vitalsource Store: (available 8/30/17)

Case Study Lab Access

Bundle ISBN: 9781284140583
Standalone Case Study Lab Access on Navigate 2 - fulfilled via e-mail. Please confirm the ISBNs used in your course with your instructor before placing your order. Your institution may use a custom integration or access portal that requires a specialized access code.