Managing Risk in Information Systems, Third Edition
- 10h 2m
- Andy Igonor, Darril Gibson
- Jones and Bartlett Learning
- 2022
Managing Risk in Information Systems, Third Edition provides a comprehensive overview of risk management and its implications on IT infrastructures and compliance. This new edition addresses risk across entire Information Systems, including Data, People, Processes, and Technology. Written by industry experts, and using a wealth of examples and exercises, this text incorporates hands-on activities to walk the reader through the fundamentals of risk management, strategies and approaches for mitigating risk, and the anatomy of how to create a plan that reduces risk.
Features and Benefits
- Available with new Cybersecurity Cloud Labs, which provide immersive mock IT infrastructures where students can learn and practice foundational cybersecurity skills
- Includes the latest information on new and emerging topics such as Cloud Computing, Mobile Computing, Artificial Intelligence, Machine Learning, and more
- Provides a modern and comprehensive view of information security policies and frameworks
- Examines the technical knowledge and software skills required for policy implementation
- Explores the creation of an effective IT security policy framework
- Updated with the latest coverage of GDPR, COBIT, CVE, and NIST
About the Author
Darril Gibson - ISC)2 SSCP and CISSP, CompTIA Security+ and CASP, CEO of YCDA (You Can Do Anything)
Darril Gibson, (ISC)2 SSCP and CISSP, CompTIA Security+ and CASP, is the CEO of YCDA (short for You Can Do Anything), and he has authored or coauthored more than 40 books. Darril regularly writes, consults, and teaches on a wide variety of technical and security topics and holds several certifications. He regularly posts blog articles at http://blogs.getcertifiedgetahead.com/ about certification topics and uses that site to help people stay abreast of changes in certification exams. He loves hearing from readers, especially when they pass an exam after using one of his books, and you can contact him through the blogging site.
Andy Igonor, PhD - Dean, Franklin University - Ross College of Business, Columbus, Ohio, Co-Executive Director, Center for Public Safety & Cybersecurity Education, Columbus, Ohio
Andy Igonor has spent over 20 years working with various organizations in creating and enhancing their business processes & workflows, selecting, and implementing complex automated information technology solutions. Some of these solutions include enterprise resource planning (ERP) systems for clients in manufacturing, production, oil & gas, and food & beverage industries. He has also implemented learning management solutions (LMS) for clients in the education sector, as well as electronic health and medical record (EHR/EMR) systems for clients in healthcare. He has consulted for several clients in Canada including the Government of Alberta, Health Canada, Alberta Medical Association/the Physician Office System Program (POSP) and the Business Development Bank of Canada. He has also worked internationally with clients in Singapore, the United Arab Emirates, and the USA. Andy currently works at WGU as an Associate Dean and Director of Academic Programs, Information Technology/Cloud Computing.
In this Book
-
Risk Management Fundamentals
-
Managing Risk—Threats, Vulnerabilities, and Exploits
-
Understanding and Maintaining Compliance
-
Developing a Risk Management Plan
-
Defining Risk Assessment Approaches
-
Performing a Risk Assessment
-
Identifying Assets and Activities to Be Protected
-
Identifying and Analyzing Threats, Vulnerabilities, and Exploits
-
Identifying and Analyzing Risk Mitigation Security Controls
-
Planning Risk Mitigation Throughout an Organization
-
Turning a Risk Assessment into a Risk Mitigation Plan
-
Mitigating Risk with a Business Impact Analysis
-
Mitigating Risk with a Business Continuity Plan
-
Mitigating Risk with a Disaster Recovery Plan
-
Mitigating Risk with a Computer Incident Response Team Plan
-
References
YOU MIGHT ALSO LIKE
