Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Information Security Handbook Develop a threat model and incident response strategy to build a strong information security framework

Product type Paperback

Published in Dec 2017

Publisher

ISBN-13 9781788478830

Length 330 pages

Edition 1st Edition

Concepts

Information Security

Author (1):

Darren Death

View More author details

Table of Contents (13) Chapters

Preface

1. Information and Data Security Fundamentals FREE CHAPTER

2. Defining the Threat Landscape

3. Preparing for Information and Data Security

4. Information Security Risk Management

5. Developing Your Information and Data Security Plan

6. Continuous Testing and Monitoring

7. Business Continuity/Disaster Recovery Planning

8. Incident Response Planning

9. Developing a Security Operations Center

10. Developing an Information Security Architecture Program

11. Cloud Security Consideration

12. Information and Data Security Best Practices

Summary

In this chapter, we discussed the critical activities required to establish an enterprise-wide information security program, focusing on executive buy-in, policies, procedures, standards, and guidelines.

In this chapter, you learned:

The planning concept related to information security program establishment
Success factors for information security program success
Information security program integration into organizational processes
Maturity concepts related to information security program planning
Policies, procedures, standards, and guidelines

In the next chapter, we will be covering the concepts of information security risk management. We will be discussing who has the responsibility for risk ownership within the organization and how to perform a risk assessment.

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at AU $24.99/month. Cancel anytime

Authors (1)

Death

Darren Death is ASRC Federal's Chief Information Security Officer. He is responsible for managing the enterprise cybersecurity program across a 3 billion-dollar portfolio of business sectors, including financial services, government contracting, and construction. A proven technology leader with over 20 years of experience deploying enterprise systems for large private and public organizations, Darren Death has led, designed, and implemented large-scale, organizational-wide enterprise IT systems with far-reaching impact. Before joining ASRC Federal, while at the Department of Justice, he was responsible for creating a nationwide enterprise processing capability across the US Attorney, Marshalls Service, and the Bureau of Alcohol, Tobacco, and Firearms divisions. At the Library of Congress, Darren was responsible for all emerging technologies related to information security. He holds a doctoral degree in information technology, specializing in information assurance and cybersecurity.

See other products by Death