Managing Information Security offers focused coverage of how to protect mission critical systems, how to deploy security management systems, IT security, ID Management, intrusion detection and prevention systems, computer forensics, network forensics, firewalls, penetration testing, vulnerability assessment, and more. It offers in-depth coverage of the current technology and practice as it relates to information security management solutions. Individual chapters are authored by leading experts in the field and address the immediate and long term challenges in the authors' respective areas of expertise.
Improving security of IT, network, and telecom assets has become absolutely essential. The growth of distributed computing, combined with the widespread use of off-the-shelf software products and Internet connectivity, has created security nightmares for many organizations. During the last decade, a great deal of attention has been focused on the cyber aspects of information systems security. In an effort to address an array of cyber security problems, many organizations have hired or trained new IT security personnel and dramatically increased spending on computer security products. It appears that the struggle to improve cyber security will continue well into the future.
However, the obsessive concern over information cyber security has far too often overshadowed the need for understanding the basics of information systems. The purpose of this book is to show organizations how to effectively and efficiently organize and maintain their defenses on all fronts, not just protect against the cyber threat. This includes risk analysis, mitigation design, deployment of defenses, and the maintenance of security efforts. The book starts with basic concepts and takes readers through the steps to help them to effectively secure computer networks and information systems.
-
Chapters contributed by leaders in the field covering foundational and practical aspects of information security management, allowing the reader to develop a new level of technical expertise found nowhere else.
-
Comprehensive coverage by leading experts allows the reader to put current technologies to work.
-
Presents methods of analysis and problem solving techniques, enhancing the reader's grasp of the material and ability to implement practical solutions.