SpinSafe » Information

Security De-Engineering: Solving the Problems in Information Risk Management

SecureTech — Tue, 22 May 2012 10:37:46 +0000

As hacker organizations surpass drug cartels in terms of revenue generation, it is clear that the good guys are doing something wrong in information security. Providing a simple foundational remedy for our security ills, Security De-Engineering: Solving the Problems in Information Risk Management is a definitive guide to the current problems impacting corporate information risk management. [...]

Posted from: SpinSafe.com

Untying the Gordian Knot, Demystifying Information Risk Assessment

SecureTech — Mon, 30 Apr 2012 22:37:39 +0000

Information Risk Assessment is both a process and the product of the process, most managers do not know what to exprect to receive in an assessment or understand the process used to develop it. This volume explains the content by providing a suggest table of contents and suggested content for each section of the document. [...]

Posted from: SpinSafe.com

The Basics of Information Security: Understanding the Fundamentals of InfoSec in Theory and Practice

SecureTech — Fri, 20 Apr 2012 04:39:08 +0000

As part of the Syngress Basics series, The Basics of Information Security provides you with fundamental knowledge of information security in both theoretical and practical aspects. It covers the basic knowledge needed to understand the key concepts of confidentiality, integrity, and availability. Then it dives into practical applications of these ideas in the areas of [...]

Posted from: SpinSafe.com

US official say weak computer security among allies makes sharing cyber information a risk – Washington Post

SecureTech — Wed, 11 Apr 2012 12:32:03 +0000

WASHINGTON — A senior Pentagon official says international cooperation on developing better tools and methods to prevent cyberattacks is being undermined by poor computer security among U.S. allies. Rear Adm. Samuel Cox, who is director of intelligence … “computer security” – Bing News Posted from: SpinSafe.com

Posted from: SpinSafe.com

Information Security Risk Analysis, Second Edition

SecureTech — Fri, 06 Apr 2012 08:39:17 +0000

The risk management process supports executive decision-making, allowing managers and owners to perform their fiduciary responsibility of protecting the assets of their enterprises. This crucial process should not be a long, drawn-out affair. To be effective, it must be done quickly and efficiently.Information Security Risk Analysis, Second Edition enables CIOs, CSOs, and MIS managers to [...]

Posted from: SpinSafe.com

CISA Certified Information Systems Auditor Study Guide

SecureTech — Thu, 05 Apr 2012 20:37:42 +0000

The industry-leading study guide for the CISA exam, fully updatedMore than 27,000 IT professionals take the Certified Information Systems Auditor exam each year. SC Magazine lists the CISA as the top certification for security professionals. Compliances, regulations, and best practices for IS auditing are updated twice a year, and this is the most up-to-date book [...]

Posted from: SpinSafe.com

Writing Information Security Policies, Volume 4, The Roles and Responsibilities Policy

SecureTech — Thu, 08 Mar 2012 04:38:49 +0000

Roles are assigned to users based on assigned duties. A role usually consists of discrete sets of privileges and responsibilities. Use of privilege is a concern as it allows a user to violate the security policy. The risk is addressed by accountability, applied to deter damaging behavior. This policy is closely paired with the Personnel [...]

Posted from: SpinSafe.com

New Report Calls for Enhanced Security to Safeguard Protected Health Information – MSN Money

SecureTech — Wed, 07 Mar 2012 01:31:10 +0000

ANSI, The Santa Fe Group/Shared Assessments Program Healthcare Working Group, and the Internet Security Alliance to Host Congressional Briefing Today; White House Cybersecurity Coordinator Howard Schmidt Invited to Speak at Press Conference … “internet security” – Bing News Posted from: SpinSafe.com

Posted from: SpinSafe.com

Information Risk Management in an Age of Enterprise

SecureTech — Sun, 12 Feb 2012 02:37:37 +0000

Ecommerce has become an integral part of critical business processes throughout organizatuions large and small. The risks to sensitive assets remain poorly understood by managers and other key stakeholders. Soultions are found in the application of protection measures to reduce risks and potential losses. Making systems safe enough means mitigating risks to the point they [...]

Posted from: SpinSafe.com

Information Security: Principles and Practices

SecureTech — Mon, 23 Jan 2012 23:46:37 +0000

For an introductory course in information security covering principles and practices. This text covers the ten domains in the Information Security Common Body of Knowledge, which are Security Management Practices, Security Architecture and Models, Business Continuity Planning (BCP) and Disaster Recovery Planning (DRP), Law, Investigations, and Ethics, Physical Security, Operations Security, Access Control Systems and [...]

Posted from: SpinSafe.com