The Manager's Guide to Enterprise Security Risk Management: Essentials of Risk-Based Security - Brossura

Allen, Brian; Loyear, Rachelle

 
9781944480523: The Manager's Guide to Enterprise Security Risk Management: Essentials of Risk-Based Security
Brossura
ISBN 10: 1944480528 ISBN 13: 9781944480523
Casa editrice: Rothstein Associates, Incorporated, 2018

Sinossi

Is security management changing so fast that you can’t keep up? Perhaps it seems like those traditional “best practices” in security no longer work? One answer might be that you need better best practices! In their new book, The Manager’s Guide to Enterprise Security Risk Management: Essentials of Risk-Based Security, two experienced professionals introduce ESRM. Their practical, organization-wide, integrated approach redefines the securing of an organization’s people and assets from being task-based to being risk-based. In their careers, the authors, Brian Allen and Rachelle Loyear, have been instrumental in successfully reorganizing the way security is handled in major corporations. In this ground-breaking book, the authors begin by defining Enterprise Security Risk Management (ESRM): “Enterprise security risk management is the application of fundamental risk principles to manage all security risks − whether information, cyber, physical security, asset management, or business continuity − in a comprehensive, holistic, all-encompassing approach.” In the face of a continually evolving and increasingly risky global security landscape, this book takes you through the steps of putting ESRM into practice enterprise-wide, and helps you to: Differentiate between traditional, task-based management and strategic, risk-based management. See how adopting ESRM can lead to a more successful security program overall and enhance your own career. Prepare your security organization to adopt an ESRM methodology. Analyze and communicate risks and their root causes to all appropriate parties. Identify what elements are necessary for long-term success of your ESRM program. Ensure the proper governance of the security function in your enterprise. Explain the value of security and ESRM to executives using useful metrics and reports. Throughout the book, the authors provide a wealth of real-world case studies from a wide range of businesses and industries to help you overcome any blocks to acceptance as you design and roll out a new ESRM-based security program for your own workplace.

Le informazioni nella sezione "Riassunto" possono far riferimento a edizioni diverse di questo titolo.

Informazioni sull?autore

Brian Allen has 20+ years’ experience in virtually every aspect of the security field, most recently Chief Security Officer (CSO) with Time Warner Cable (TWC), a multinational provider of telecommunications, information, and entertainment services. responsible for protecting TWC’s assets worldwide, coordinating the company’s crisis management and business continuity management (BCM) programs, managing TWC’s cybersecurity policy and leading its security risk management program. Brian earned his Bachelor of Science degree in criminal justice from Long Island University and received his Juris Doctor degree from Touro Law Center in New York. He is a member of the New York State Bar Association, a Certified Protection Professional (CPP) with ASIS, a Certified Information Systems Security Professional (CISSP) with ISC2, a Certified Fraud Examiner (CFE) with the ACFE and a Certified Information Security Manager (CISM) withISACA. Brian is also a member of the International Security Management Association and the Association of Threat Assessment Professionals. Rachelle Loyear has spent over a decade managing projects and programs in corporate security organizations, focusing on business continuity and organizational resilience. In her work life, she has directed teams responsible for ensuring resilience in the face of many different types of security risks, both physical and logical. Her responsibilities have included: Security/BCM program design and development; crisis management and emergency response planning; functional and location-based recovery and continuity planning; crisis management and continuity training and operational continuity exercises; and logistical programs, such as public/private partnership relationship management and crisis recovery resource programs. Rachelle holds a bachelor’s degree in history from the University of North Carolina at Charlotte, and a master’s degree in business administration from the University of Phoenix. She is certified as a Master Business Continuity Professional (MBCP) through DRI International, as an Associate Fellow of Business Continuity International (AFBCI), as a Certified Information Security Manager (CISM) through ISACA, and as a Project Management Professional (PMP) through the Project Management Institute (PMI). She is active in multiple BCM industry groups, and is vice-chair of the Crisis Management and Business Continuity Council of ASIS International as well as serving on the IT Security Council.

Le informazioni nella sezione "Su questo libro" possono far riferimento a edizioni diverse di questo titolo.

Editore
Rothstein Associates, Incorporated
Data di pubblicazione
2018
Lingua
Inglese
ISBN 10 
1944480528
ISBN 13 
9781944480523
Rilegatura
Copertina flessibile
Numero di pagine
148
Redattore
Noakes-Fry Kristen
Contatto del produttore
Manufactured by Amazon on behalf of the author
https://www.amazon.it/hz/contact-us

c/o Amazon Media EU S.à.r.l., 38 Avenue John F. Kennedy
Luxembourg
L-1855
Lussemburgo