Writing Information Security Policies, Volume 4, The Roles and Responsibilities Policy
Roles are assigned to users based on assigned duties. A role usually consists of discrete sets of privileges and responsibilities. Use of privilege is a concern as it allows a user to violate the security policy. The risk is addressed by accountability, applied to deter damaging behavior. This policy is closely paired with the Personnel [...]
Writing Security Tools and Exploits
Product DescriptionWriting Security Tools and Exploits will be the foremost authority on vulnerability and security code and will serve as the premier educational reference for security professionals and software developers. The book will have over 600 pages of dedicated exploit, vulnerability, and tool code with corresponding instruction. Unlike other security and programming books that dedicate [...]
Writing Information Security Policies
Product DescriptionAdministrators, more technically savvy than their managers, have started to secure the networks in a way they see as appropriate. When management catches up to the notion that security is important, system administrators have already altered the goals and business practices. Although they may be grateful to these people for keeping the network secure, [...]
