Practical Risk Management for the CIO PDF ePub eBook

Books Info:

Practical Risk Management for the CIO free pdf The growing complexity of today's interconnected systems has not only increased the need for improved information security, but also helped to move information from the IT backroom to the executive boardroom as a strategic asset. And, just like the tip of an iceberg is all you see until you run into it, the risks to your information are mostly invisible until disaster strikes. Detailing procedures to help your team perform better risk assessments and aggregate results into more meaningful metrics, Practical Risk Management for the CIO approaches information risk management through improvements to information management and information security. It provides easy-to-follow guidance on how to effectively manage the flow of information and incorporate both service delivery and reliability. Explains why every CIO should be managing his or her information differently Provides time-tested risk ranking strategies Considers information security strategy standards such as NIST, FISMA, PCI, SP 800,

About Mark Scherling

Mark Scherling, CISSP, CRM, has been working in IT for over 30 years. For the past four years, he has been managing information security and privacy for the Justice Sector in the Government of British Columbia (Canada). Prior to the Justice Sector, he managed the Information Security Investigations Unit for the entire BC government. He has designed and implemented public key infrastructure (PKI) and security solutions for numerous clients. He is considered a Subject Matter Expert in Risk Management and Information Security by the Information Systems Audit and Control Association (ISACA). He contributed to the Risk IT Framework and Certification in Risk and Information Systems (CRISC), a new ISACA Certification. He is viewed as a Security and Risk Management Expert by many people within and associated with the Government of British Columbia. His background includes sales, marketing, and information management. In the mid-1990s, he was instrumental in developing and implementing the Canadian Department of National Defence Intranet or the DIN. He has significant experience in information and knowledge management. He combines this expertise with information protection to create an information risk management strategy for Chief Information Officers (CIOs). He has been part of the evolution of information technology (IT) from Digital Equipment's Vaxes and PDP11s to mobile computing, the Internet, and cloud computing. The interconnected world we now live in holds exciting promise to link people, computers, applications, and information. There are risks when we link everything together and share information. Organizations are always trying to reduce costs and improve customer relations. Mark has been involved in information security for over 13 years and has oriented his approach from simple information security to risk management strategies. As the Internet continues to evolve, so evolves information security and risk management. The reality is that we need better ways of managing risks to our information and services. His approach takes a more holistic approach to risks, considering not just liabilities but also service delivery because information is one of our most important assets.

Details Book

Author : Mark Scherling
Publisher : Auerbach Publishers Inc.
Data Published : 15 April 2011
ISBN : 1439856532
EAN : 9781439856536
Format Book : PDF, Epub, DOCx, TXT
Number of Pages : 399 pages
Age + : 15 years
Language : English
Rating :

Reviews Practical Risk Management for the CIO



17 Comments Add a comment




Related eBooks Download


  • FISMA and the Risk Management Framework free pdfFISMA and the Risk Management Framework

    FISMA and the Risk Management Framework: The New Practice of Federal Cyber Security deals with the Federal Information Security Management Act (FISMA). a law that provides the framework for securing information systems and managing risk associated with information resources in federal government agencies..


  • Information Security Management Handbook free pdfInformation Security Management Handbook

    Updated annually. the Information Security Management Handbook is the most comprehensive and up-to-date reference available on information security and risk management. Bringing together the knowledge..


  • Advances in Information Security Management and Small Systems Security free pdfAdvances in Information Security Management and Small Systems Security

    This book presents a state-of-the-art review of current perspectives in information security. focusing on technical as well as functional issues. The topics in this volume include the latest developments in: Information security management issues- Network security and protocols- Information security aspects of E-commerce- Distributed computing and access control- Security in mobile environments- Advances in intrusion detection- and..


  • Information Security Management Handbook free pdfInformation Security Management Handbook

    Updated annually to keep up with the increasingly fast pace of change in the field. the Information Security Management Handbook is the single most comprehensive and up-to-date resource on information security (IS) and assurance..


  • The Security Risk Assessment Handbook free pdfThe Security Risk Assessment Handbook

    The Security Risk Assessment Handbook: A Complete Guide for Performing Security Risk Assessments provides detailed insight into precisely how to conduct an information security risk assessment..


  • Practical Risk Management for the CIO free pdfPractical Risk Management for the CIO

    . The growing complexity of today's interconnected systems has not only increased the need for improved information security, but also helped to move information from the IT backroom to the executive