0

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Free Learning

Information Security Handbook

You're reading from Information Security Handbook Enhance your proficiency in information security program development

Product type Paperback

Published in Oct 2023

Publisher Packt

ISBN-13 9781837632701

Length 370 pages

Edition 2nd Edition

Concepts

Information Security

Author (1):

Darren Death

View More author details

Table of Contents (16) Chapters

Preface

1. Chapter 1: Information and Data Security Fundamentals

2. Chapter 2: Defining the Threat Landscape FREE CHAPTER

3. Chapter 3: Laying a Foundation for Information and Data Security

4. Chapter 4: Information Security Risk Management

5. Chapter 5: Developing Your Information and Data Security Plan

6. Chapter 6: Continuous Testing and Monitoring

7. Chapter 7: Business Continuity/Disaster Recovery Planning

8. Chapter 8: Incident Response Planning

9. Chapter 9: Developing a Security Operations Center

10. Chapter 10: Developing an Information Security Architecture Program

11. Chapter 11: Cloud Security Considerations

12. Chapter 12: Zero Trust Architecture in Information Security

13. Chapter 13: Third-Party and Supply Chain Security

14. Index

Why subscribe?

15. Other Books You May Enjoy

Identifying threats and choosing the right approach

When conducting a risk assessment, the first step is identifying potential threats your organization may encounter. This list should include the following:

Threat: A threat refers to any situation or event that has the potential to cause harm to your organization’s operations, resources, reputation, personnel, other organizations, or even national security through an information system
Threat source: The intent and method aimed at intentionally exploiting a vulnerability or a situation that may accidentally lead to vulnerability exploitation
Description: A brief narrative that defines the threat and threat source pairing, ensuring consistent application of this information throughout the risk management process

The choice between qualitative and quantitative risk assessments depends on the organization’s needs and the evaluated risks. Organizations may choose to use a combination of both qualitative...

The rest of the chapter is locked

Register for a free Packt account to unlock a world of extra content!

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at €18.99/month. Cancel anytime

Authors (1)

Darren Death

Darren Death

Darren Death is ASRC Federal's Chief Information Security Officer. He is responsible for managing the enterprise cybersecurity program across a 3 billion-dollar portfolio of business sectors, including financial services, government contracting, and construction. A proven technology leader with over 20 years of experience deploying enterprise systems for large private and public organizations, Darren Death has led, designed, and implemented large-scale, organizational-wide enterprise IT systems with far-reaching impact. Before joining ASRC Federal, while at the Department of Justice, he was responsible for creating a nationwide enterprise processing capability across the US Attorney, Marshalls Service, and the Bureau of Alcohol, Tobacco, and Firearms divisions. At the Library of Congress, Darren was responsible for all emerging technologies related to information security. He holds a doctoral degree in information technology, specializing in information assurance and cybersecurity.

See other products by Darren Death

Personalised recommendations for you

Based on your interests and search pattern

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

Malware Development for Ethical Hackers

Malware Development for Ethical Hackers

This book will help you understand malware development by delving into the intricate mechanisms of malware development, injection attacks, and advanced evasion strategies with over 80 real-life examples.

Jun 2024 13h 0m

Malware Development for Ethical Hackers

Malware Development for Ethical Hackers

This book will help you understand malware development by delving into the intricate mechanisms of malware development, injection attacks, and advanced evasion strategies with over 80 real-life examples.

Jun 2024 13h 0m

Malware Development for Ethical Hackers

Malware Development for Ethical Hackers

This book will help you understand malware development by delving into the intricate mechanisms of malware development, injection attacks, and advanced evasion strategies with over 80 real-life examples.

Jun 2024 13h 0m

Malware Development for Ethical Hackers

Malware Development for Ethical Hackers

This book will help you understand malware development by delving into the intricate mechanisms of malware development, injection attacks, and advanced evasion strategies with over 80 real-life examples.

Jun 2024 13h 0m

Malware Development for Ethical Hackers

Malware Development for Ethical Hackers

This book will help you understand malware development by delving into the intricate mechanisms of malware development, injection attacks, and advanced evasion strategies with over 80 real-life examples.

Jun 2024 13h 0m