CertificationBooks.com: A Practical Approach to Managing Information System Risk

your dedicated resource for computer certification books

Home | Author Interviews | Practice Tests

Certification Watch

Get the latest certification news by email!

Certification Resources

GoExam
Certification practice tests with free demos to download.

GoCertify
Complete computer certification resource center covering virtually every IT certification.

SearchCertify
links, links and more certification links!

Quick Links: Cisco CCNA CCNP CCIE Microsoft MCTS MCITP MCSA MCSE MCSD MCDBA MOUS Sun Java Solaris Novell CNA CNE Oracle DBA Developer Red Hat RHCE RHCT More CISA CISSP CIW PMP

View Cart or Checkout

In association with Amazon.com


by: Tom Olzak MBA CISSP See Larger Image Binding: Kindle Edition Format: Kindle eBook Label: Tom Olzak Languages: EnglishUnknownEnglishPublished Manufacturer: Tom Olzak Number Of Items: 1 Number Of Pages: 35 Publication Date: February 01, 2008 Publisher: Tom Olzak Release Date: February 01, 2008 Studio: Tom Olzak Related Items: Cyber War: The Next Threat to National Security and What to Do About It dNine Things Successful People Do Differently How to Use the Unix-Linux vi Text Editor The Corporate Information Security Policy (Writing Information Security Policies) CISSP® Exam Manual see more Browse for similar items by category: Click to Display Editorial Review: Product Description: The purpose of this paper is to provide security managers with a working understanding of risk management as it applies to information systems. The processes and tools included assume that organization- and enterprise-level controls are already functioning, and implementation of the target system is taking place within this existing security context. I begin by exploring the challenges facing security managers every day when trying to balance security with the needs of business managers to maintain and improve operational effectiveness. I then define risk management and provide an overview of how to strategically approach the application of reasonable and appropriate safeguards. Finally, I provide a model and related tools for conducting a risk assessment, selecting the right controls, obtaining approval for implementation, and managing risk throughout the target system?s lifetime. Customer Reviews Average Rating: none