Dekorationsartikel gehören nicht zum Leistungsumfang.
Sprache:
Englisch
35,10 €*
Versandkostenfrei per Post / DHL
Aktuell nicht verfügbar
Kategorien:
Beschreibung
Is security management changing so fast that you can't keep up? Perhaps it seems like those traditional "best practices" in security no longer work? One answer might be that you need better best practices! In their new book, The Manager's Guide to Enterprise Security Risk Management: Essentials of Risk-Based Security, two experienced professionals introduce ESRM. Their practical, organization-wide, integrated approach redefines the securing of an organization's people and assets from being task-based to being risk-based.
In their careers, the authors, Brian Allen and Rachelle Loyear, have been instrumental in successfully reorganizing the way security is handled in major corporations. In this ground-breaking book, the authors begin by defining Enterprise Security Risk Management (ESRM):
"Enterprise security risk management is the application of fundamental risk principles to manage all security risks âˆ' whether information, cyber, physical security, asset management, or business continuity âˆ' in a comprehensive, holistic, all-encompassing approach."
In the face of a continually evolving and increasingly risky global security landscape, this book takes you through the steps of putting ESRM into practice enterprise-wide, and helps you to:
Differentiate between traditional, task-based management and strategic, risk-based management.
See how adopting ESRM can lead to a more successful security program overall and enhance your own career.
Prepare your security organization to adopt an ESRM methodology.
Analyze and communicate risks and their root causes to all appropriate parties.
Identify what elements are necessary for long-term success of your ESRM program.
Ensure the proper governance of the security function in your enterprise.
Explain the value of security and ESRM to executives using useful metrics and reports.
Throughout the book, the authors provide a wealth of real-world case studies from a wide range of businesses and industries to help you overcome any blocks to acceptance as you design and roll out a new ESRM-based security program for your own workplace.
In their careers, the authors, Brian Allen and Rachelle Loyear, have been instrumental in successfully reorganizing the way security is handled in major corporations. In this ground-breaking book, the authors begin by defining Enterprise Security Risk Management (ESRM):
"Enterprise security risk management is the application of fundamental risk principles to manage all security risks âˆ' whether information, cyber, physical security, asset management, or business continuity âˆ' in a comprehensive, holistic, all-encompassing approach."
In the face of a continually evolving and increasingly risky global security landscape, this book takes you through the steps of putting ESRM into practice enterprise-wide, and helps you to:
Differentiate between traditional, task-based management and strategic, risk-based management.
See how adopting ESRM can lead to a more successful security program overall and enhance your own career.
Prepare your security organization to adopt an ESRM methodology.
Analyze and communicate risks and their root causes to all appropriate parties.
Identify what elements are necessary for long-term success of your ESRM program.
Ensure the proper governance of the security function in your enterprise.
Explain the value of security and ESRM to executives using useful metrics and reports.
Throughout the book, the authors provide a wealth of real-world case studies from a wide range of businesses and industries to help you overcome any blocks to acceptance as you design and roll out a new ESRM-based security program for your own workplace.
Is security management changing so fast that you can't keep up? Perhaps it seems like those traditional "best practices" in security no longer work? One answer might be that you need better best practices! In their new book, The Manager's Guide to Enterprise Security Risk Management: Essentials of Risk-Based Security, two experienced professionals introduce ESRM. Their practical, organization-wide, integrated approach redefines the securing of an organization's people and assets from being task-based to being risk-based.
In their careers, the authors, Brian Allen and Rachelle Loyear, have been instrumental in successfully reorganizing the way security is handled in major corporations. In this ground-breaking book, the authors begin by defining Enterprise Security Risk Management (ESRM):
"Enterprise security risk management is the application of fundamental risk principles to manage all security risks âˆ' whether information, cyber, physical security, asset management, or business continuity âˆ' in a comprehensive, holistic, all-encompassing approach."
In the face of a continually evolving and increasingly risky global security landscape, this book takes you through the steps of putting ESRM into practice enterprise-wide, and helps you to:
Differentiate between traditional, task-based management and strategic, risk-based management.
See how adopting ESRM can lead to a more successful security program overall and enhance your own career.
Prepare your security organization to adopt an ESRM methodology.
Analyze and communicate risks and their root causes to all appropriate parties.
Identify what elements are necessary for long-term success of your ESRM program.
Ensure the proper governance of the security function in your enterprise.
Explain the value of security and ESRM to executives using useful metrics and reports.
Throughout the book, the authors provide a wealth of real-world case studies from a wide range of businesses and industries to help you overcome any blocks to acceptance as you design and roll out a new ESRM-based security program for your own workplace.
In their careers, the authors, Brian Allen and Rachelle Loyear, have been instrumental in successfully reorganizing the way security is handled in major corporations. In this ground-breaking book, the authors begin by defining Enterprise Security Risk Management (ESRM):
"Enterprise security risk management is the application of fundamental risk principles to manage all security risks âˆ' whether information, cyber, physical security, asset management, or business continuity âˆ' in a comprehensive, holistic, all-encompassing approach."
In the face of a continually evolving and increasingly risky global security landscape, this book takes you through the steps of putting ESRM into practice enterprise-wide, and helps you to:
Differentiate between traditional, task-based management and strategic, risk-based management.
See how adopting ESRM can lead to a more successful security program overall and enhance your own career.
Prepare your security organization to adopt an ESRM methodology.
Analyze and communicate risks and their root causes to all appropriate parties.
Identify what elements are necessary for long-term success of your ESRM program.
Ensure the proper governance of the security function in your enterprise.
Explain the value of security and ESRM to executives using useful metrics and reports.
Throughout the book, the authors provide a wealth of real-world case studies from a wide range of businesses and industries to help you overcome any blocks to acceptance as you design and roll out a new ESRM-based security program for your own workplace.
Über den Autor
Brian Allen has more than 20 years' experience in virtually every
aspect of the security field. He most recently held the position of
Chief Security Officer (CSO) with Time Warner Cable (TWC), a
leading multinational provider of telecommunications, information,
and entertainment services headquartered in New York City. In this
role, he was responsible for protecting TWC's assets worldwide,
coordinating the company's crisis management and business
continuity management (BCM) programs, managing TWC's
cybersecurity policy and leading its security risk management
program. He managed the company's security policy and relations
with law enforcement and government authorities, as well as all
customer security risk issues, oversaw internal and external investigations, and headed the
company's workplace violence program. Before joining TWC in January 2002, he was Director
of the Office of Cable Signal Theft at the National Cable and Telecommunications Association
in Washington, D.C., and the owner of ACI Investigations, a multimillion-dollar provider of
security guard, investigations, and consulting services.
Brian earned his Bachelor of Science degree in criminal justice from Long Island University and
received his Juris Doctor degree from Touro Law Center in New York. He is a member of the
New York State Bar Association, a Certified Protection Professional (CPP) with ASIS, a
Certified Information Systems Security Professional (CISSP) with ISC2, a Certified Fraud
Examiner (CFE) with the ACFE and a Certified Information Security Manager (CISM) with
ISACA. Brian is also a member of the International Security Management Association and the
Association of Threat Assessment Professionals.
Brian is an Adjunct Professor at the University of Connecticut, School of Business MBA
Program and is active in industry organizations. He served as a member of the Communications Infrastructure Reliability and Interoperability Council (CSRIC), an FCC appointed position, and
co-chaired its working group on Cybersecurity Best Practices and the Cybersecurity Framework.
He is also one of four elected communications company representatives to serve on the
Executive Committee of the US Communications Sector Coordinating Council (CSCC). He
works with the Cross Sector Cybersecurity Working Group, established by the U.S. Department
of Homeland Security (DHS) under the Critical Infrastructure Partnership Advisory Council.
Brian has served on the board of directors of ASIS International, and the board of trustees of
ASIS International's Foundation. He is currently a member of the Board of Directors of the
Domestic Violence Crisis Center in Connecticut.
aspect of the security field. He most recently held the position of
Chief Security Officer (CSO) with Time Warner Cable (TWC), a
leading multinational provider of telecommunications, information,
and entertainment services headquartered in New York City. In this
role, he was responsible for protecting TWC's assets worldwide,
coordinating the company's crisis management and business
continuity management (BCM) programs, managing TWC's
cybersecurity policy and leading its security risk management
program. He managed the company's security policy and relations
with law enforcement and government authorities, as well as all
customer security risk issues, oversaw internal and external investigations, and headed the
company's workplace violence program. Before joining TWC in January 2002, he was Director
of the Office of Cable Signal Theft at the National Cable and Telecommunications Association
in Washington, D.C., and the owner of ACI Investigations, a multimillion-dollar provider of
security guard, investigations, and consulting services.
Brian earned his Bachelor of Science degree in criminal justice from Long Island University and
received his Juris Doctor degree from Touro Law Center in New York. He is a member of the
New York State Bar Association, a Certified Protection Professional (CPP) with ASIS, a
Certified Information Systems Security Professional (CISSP) with ISC2, a Certified Fraud
Examiner (CFE) with the ACFE and a Certified Information Security Manager (CISM) with
ISACA. Brian is also a member of the International Security Management Association and the
Association of Threat Assessment Professionals.
Brian is an Adjunct Professor at the University of Connecticut, School of Business MBA
Program and is active in industry organizations. He served as a member of the Communications Infrastructure Reliability and Interoperability Council (CSRIC), an FCC appointed position, and
co-chaired its working group on Cybersecurity Best Practices and the Cybersecurity Framework.
He is also one of four elected communications company representatives to serve on the
Executive Committee of the US Communications Sector Coordinating Council (CSCC). He
works with the Cross Sector Cybersecurity Working Group, established by the U.S. Department
of Homeland Security (DHS) under the Critical Infrastructure Partnership Advisory Council.
Brian has served on the board of directors of ASIS International, and the board of trustees of
ASIS International's Foundation. He is currently a member of the Board of Directors of the
Domestic Violence Crisis Center in Connecticut.
Details
Erscheinungsjahr: | 2018 |
---|---|
Fachbereich: | Allgemeines |
Genre: | Wirtschaft |
Rubrik: | Recht & Wirtschaft |
Medium: | Taschenbuch |
ISBN-13: | 9781944480523 |
ISBN-10: | 1944480528 |
Sprache: | Englisch |
Ausstattung / Beilage: | Paperback |
Einband: | Kartoniert / Broschiert |
Autor: |
Allen, Brian
Loyear, Rachelle |
Redaktion: | Noakes-Fry, Kristen |
Hersteller: | Rothstein Publishing |
Maße: | 280 x 216 x 9 mm |
Von/Mit: | Brian Allen (u. a.) |
Erscheinungsdatum: | 15.05.2018 |
Gewicht: | 0,392 kg |
Über den Autor
Brian Allen has more than 20 years' experience in virtually every
aspect of the security field. He most recently held the position of
Chief Security Officer (CSO) with Time Warner Cable (TWC), a
leading multinational provider of telecommunications, information,
and entertainment services headquartered in New York City. In this
role, he was responsible for protecting TWC's assets worldwide,
coordinating the company's crisis management and business
continuity management (BCM) programs, managing TWC's
cybersecurity policy and leading its security risk management
program. He managed the company's security policy and relations
with law enforcement and government authorities, as well as all
customer security risk issues, oversaw internal and external investigations, and headed the
company's workplace violence program. Before joining TWC in January 2002, he was Director
of the Office of Cable Signal Theft at the National Cable and Telecommunications Association
in Washington, D.C., and the owner of ACI Investigations, a multimillion-dollar provider of
security guard, investigations, and consulting services.
Brian earned his Bachelor of Science degree in criminal justice from Long Island University and
received his Juris Doctor degree from Touro Law Center in New York. He is a member of the
New York State Bar Association, a Certified Protection Professional (CPP) with ASIS, a
Certified Information Systems Security Professional (CISSP) with ISC2, a Certified Fraud
Examiner (CFE) with the ACFE and a Certified Information Security Manager (CISM) with
ISACA. Brian is also a member of the International Security Management Association and the
Association of Threat Assessment Professionals.
Brian is an Adjunct Professor at the University of Connecticut, School of Business MBA
Program and is active in industry organizations. He served as a member of the Communications Infrastructure Reliability and Interoperability Council (CSRIC), an FCC appointed position, and
co-chaired its working group on Cybersecurity Best Practices and the Cybersecurity Framework.
He is also one of four elected communications company representatives to serve on the
Executive Committee of the US Communications Sector Coordinating Council (CSCC). He
works with the Cross Sector Cybersecurity Working Group, established by the U.S. Department
of Homeland Security (DHS) under the Critical Infrastructure Partnership Advisory Council.
Brian has served on the board of directors of ASIS International, and the board of trustees of
ASIS International's Foundation. He is currently a member of the Board of Directors of the
Domestic Violence Crisis Center in Connecticut.
aspect of the security field. He most recently held the position of
Chief Security Officer (CSO) with Time Warner Cable (TWC), a
leading multinational provider of telecommunications, information,
and entertainment services headquartered in New York City. In this
role, he was responsible for protecting TWC's assets worldwide,
coordinating the company's crisis management and business
continuity management (BCM) programs, managing TWC's
cybersecurity policy and leading its security risk management
program. He managed the company's security policy and relations
with law enforcement and government authorities, as well as all
customer security risk issues, oversaw internal and external investigations, and headed the
company's workplace violence program. Before joining TWC in January 2002, he was Director
of the Office of Cable Signal Theft at the National Cable and Telecommunications Association
in Washington, D.C., and the owner of ACI Investigations, a multimillion-dollar provider of
security guard, investigations, and consulting services.
Brian earned his Bachelor of Science degree in criminal justice from Long Island University and
received his Juris Doctor degree from Touro Law Center in New York. He is a member of the
New York State Bar Association, a Certified Protection Professional (CPP) with ASIS, a
Certified Information Systems Security Professional (CISSP) with ISC2, a Certified Fraud
Examiner (CFE) with the ACFE and a Certified Information Security Manager (CISM) with
ISACA. Brian is also a member of the International Security Management Association and the
Association of Threat Assessment Professionals.
Brian is an Adjunct Professor at the University of Connecticut, School of Business MBA
Program and is active in industry organizations. He served as a member of the Communications Infrastructure Reliability and Interoperability Council (CSRIC), an FCC appointed position, and
co-chaired its working group on Cybersecurity Best Practices and the Cybersecurity Framework.
He is also one of four elected communications company representatives to serve on the
Executive Committee of the US Communications Sector Coordinating Council (CSCC). He
works with the Cross Sector Cybersecurity Working Group, established by the U.S. Department
of Homeland Security (DHS) under the Critical Infrastructure Partnership Advisory Council.
Brian has served on the board of directors of ASIS International, and the board of trustees of
ASIS International's Foundation. He is currently a member of the Board of Directors of the
Domestic Violence Crisis Center in Connecticut.
Details
Erscheinungsjahr: | 2018 |
---|---|
Fachbereich: | Allgemeines |
Genre: | Wirtschaft |
Rubrik: | Recht & Wirtschaft |
Medium: | Taschenbuch |
ISBN-13: | 9781944480523 |
ISBN-10: | 1944480528 |
Sprache: | Englisch |
Ausstattung / Beilage: | Paperback |
Einband: | Kartoniert / Broschiert |
Autor: |
Allen, Brian
Loyear, Rachelle |
Redaktion: | Noakes-Fry, Kristen |
Hersteller: | Rothstein Publishing |
Maße: | 280 x 216 x 9 mm |
Von/Mit: | Brian Allen (u. a.) |
Erscheinungsdatum: | 15.05.2018 |
Gewicht: | 0,392 kg |
Warnhinweis