CISO COMPASS: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers

Rating: 
Amazon Price: $79.95 $79.55 You save: $0.40 (1%). (as of September 23, 2019 00:21 – Details). Product prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on the Amazon site at the time of purchase will apply to the purchase of this product.

Todd Fitzgerald, co-author of the ground-breaking (ISC)2 CISO Leadership: Essential Principles for Success, Information Security Governance Simplified: From the Boardroom to the Keyboard, co-author for the E-C Council CISO Body of Knowledge, and contributor to many others including Official (ISC)2 Guide to the CISSP CBK, COBIT 5 for Information Security, and ISACA CSX Cybersecurity Fundamental Certification, is back with this new book incorporating practical experience in leading, building, and sustaining an information security/cybersecurity program.

CISO COMPASS includes personal, pragmatic perspectives and lessons learned of over 75 award-winning CISOs, security leaders, professional association leaders, and cybersecurity standard setters who have fought the tough battle. Todd has also, for the first time, adapted the McKinsey 7S framework (strategy, structure, systems, shared values, staff, skills and style) for organizational effectiveness to the practice of leading cybersecurity to structure the content to ensure comprehensive coverage by the CISO and security leaders to key issues impacting the delivery of the cybersecurity strategy and demonstrate to the Board of Directors due diligence. The insights will assist the security leader to create programs appreciated and supported by the organization, capable of industry/ peer award-winning recognition, enhance cybersecurity maturity, gain confidence by senior management, and avoid pitfalls.
Continue reading “CISO COMPASS: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers”

Intelligence-Based Security in Private Industry

Rating: 
Amazon Price: N/A (as of May 12, 2016 00:12 – Details). Product prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on the Amazon site at the time of purchase will apply to the purchase of this product.

In Intelligence-Based Security in Private Industry, Thomas A. Trier identifies the inherent need and desire for intelligence-based security that exists throughout the private security industry. He provides a general overview of intelligence-based security and specific implementation guidelines to reduce private businesses’ risk and vulnerability to criminal activities.

This book is practical and informational, demonstrating real applications of the concepts, theories, and methods of gathering and acting upon information that may suggest a threat to a company. It explains the difference between risk assessments, vulnerability assessments, and threat assessments, defines external and internal threats, and outlines how strategies to address either form of threat differ. It also establishes an outline of four key parts to an effective intelligence program: assessment, evaluation, analysis, and mitigation.
Continue reading “Intelligence-Based Security in Private Industry”

Thinking Security: Stopping Next Year’s Hackers (Addison-Wesley Professional Computing Series)

Rating: 
Amazon Price: $39.99 (as of September 22, 2019 19:51 – Details). Product prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on the Amazon site at the time of purchase will apply to the purchase of this product.

You already know the endless list of security "do's and don'ts": run AV software and firewalls, lock everything down, encrypt everything, watch all your network traffic, follow checklists… But even if you're spending a fortune doing all that, you're at greater risk than ever: even the world's most security-focused organizations are being victimized by massive attacks. Something is terribly wrong. We're protecting the wrong things, damaging productivity, and making it way too hard for our people to help us.

Today, getting security right requires more than checklists; it requires careful thinking about your actual threats and technologies. That's what this book is about: how to think about security. Most security books just give you "do's and don'ts." Thinking Security tells you why, and helps you design a security architecture that truly fits your organization.
Continue reading “Thinking Security: Stopping Next Year’s Hackers (Addison-Wesley Professional Computing Series)”

Cyber Security Management: A Governance, Risk and Compliance Framework

Rating: 
Amazon Price: $145.00 $99.99 You save: $45.01 (31%). (as of September 22, 2019 10:59 – Details). Product prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on the Amazon site at the time of purchase will apply to the purchase of this product.

Cyber Security Management: A Governance, Risk and Compliance Framework by Peter Trim and Dr Yang-Im Lee has been written for a wide audience. Derived from research, the work places security management in a holistic context and outlines how the strategic marketing approach can be used to underpin cyber security in partnership arrangements. The book is unique because it integrates material that is of a highly specialized nature but which can be interpreted by those with a non-specialist background in the area. Indeed, those with a limited knowledge of cyber security will be able to develop a comprehensive understanding of the subject and will be guided into devising and implementing relevant policy, systems and procedures that make the organization better able to withstand the increasingly sophisticated forms of cyber attack.The book includes a sequence-of-events model; an organizational governance framework; a business continuity management planning framework; a multi-cultural communication model; a cyber security management model and strategic management framework; an integrated governance mechanism; an integrated resilience management model; an integrated management model and system; a communication risk management strategy; and recommendations for counteracting a range of cyber threats. Cyber Security Management: A Governance, Risk and Compliance Framework simplifies complex material and provides a multi-disciplinary perspective and an explanation and interpretation of how managers can manage cyber threats in a pro-active manner and work towards counteracting cyber threats both now and in the future.

Cybersecurity Leadership: Powering the Modern Organization

Rating: 
Amazon Price: $28.88 $23.99 You save: $4.89 (17%). (as of September 23, 2019 03:23 – Details). Product prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on the Amazon site at the time of purchase will apply to the purchase of this product.

"I've had the pleasure of taking Dr. Hasib's class and learning about both Cybersecurity Management and Ethical Leadership. In an ever changing field, there are certain principles that we can apply consistently. Dr. Hasib covers these principles and does it in a way that (is) easy to learn and understand. He has a great passion for his work and it shows in both his teaching styles and writing. I'd strongly suggest anyone within the Cybersecurity field to read his book. Whether you are a CEO or the technical support, this gives a thorough overview of an entire organization. If you are management, the ethical leadership portion helps build a strong community within an organization." – B. Avery Greene – Graduate student of cybersecurity at UMBC.

"…The dynamic of his classroom was so different than any class I've had. He is paving the way for future CEO's CISO's and entrepreneurs and is making a direct positive impact for cybersecurity students. Even though my background is not very technical, I was able to fully comprehend and excel in his classroom. Great class, strongly recommend his teaching…" -Sarah Purdum – Graduate student of cybersecurity at UMBC.
Continue reading “Cybersecurity Leadership: Powering the Modern Organization”