Complete Guide to Security and Privacy Metrics and over one million other books are available for Amazon Kindle. Learn more

Quantity:


	Amazon Prime Free Trial required. Sign up when you check out. Learn More

Sell Back Your Copy

For a $84.47 Gift Card

Learn more

More Buying Choices

Have one to sell? Sell yours here

Share your own customer images

Search inside this book

Start reading Complete Guide to Security and Privacy Metrics on your Kindle in under a minute.

Don't have a Kindle? Get your Kindle here, or download a FREE Kindle Reading App.

Complete Guide to Security and Privacy Metrics: Measuring Regulatory Compliance, Operational Resilience, and ROI [Hardcover]

Debra S. Herrmann (Author)

5.0 out of 5 stars See all reviews (1 customer review) |

List Price:	$129.95
Price:	$105.54 & this item ships for FREE with Super Saver Shipping. Details
Deal Price:
You Save:	$24.41 (19%)
	Special Offers Available
	o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o

In Stock.
Ships from and sold by Amazon.com. Gift-wrap available.

Only 3 left in stock--order soon (more on the way).

Want it delivered Monday, January 30? Choose One-Day Shipping at checkout. Details

FREE Two-Day Shipping for Students. Learn more

Formats	Amazon Price		New from	Used from
Kindle Edition	$69.99		--	--
Hardcover	$105.54		--	--

Sell Back Your Copy for $84.47

Whether you buy it used on Amazon for $94.99 or somewhere else, you can sell it back through our Book Trade-In Program at the current price of $84.47.

Used Price$94.99
Trade-in Price$84.47

Price after
Trade-in$10.52

› See more product promotions

Book Description

ISBN-10: 0849354021 | ISBN-13: 978-0849354021 | Publication Date: January 22, 2007 | Edition: 1

While it has become increasingly apparent that individuals and organizations need a security metrics program, it has been exceedingly difficult to define exactly what that means in a given situation. There are hundreds of metrics to choose from and an organization’s mission, industry, and size will affect the nature and scope of the task as well as the metrics and combinations of metrics appropriate to accomplish it. Finding the correct formula for a specific scenario calls for a clear concise guide with which to navigate this sea of information.

Complete Guide to Security and Privacy Metrics: Measuring Regulatory Compliance, Operational Resilience, and ROI defines more than 900 ready to use metrics that measure compliance, resiliency, and return on investment. The author explains what needs to be measured, why and how to measure it, and how to tie security and privacy metrics to business goals and objectives. The book addresses measuring compliance with current legislation, regulations, and standards in the US, EC, and Canada including Sarbanes-Oxley, HIPAA, and the Data Protection Act-UK. The metrics covered are scaled by information sensitivity, asset criticality, and risk, and aligned to correspond with different lateral and hierarchical functions within an organization. They are flexible in terms of measurement boundaries and can be implemented individually or in combination to assess a single security control, system, network, region, or the entire enterprise at any point in the security engineering lifecycle. The text includes numerous examples and sample reports to illustrate these concepts and stresses a complete assessment by evaluating the interaction and interdependence between physical, personnel, IT, and operational security controls.

Bringing a wealth of complex information into comprehensible focus, this book is ideal for corporate officers, security managers, internal and independent auditors, and system developers and integrators.

#outer_postBodyPS { display: none; } #psGradient { display: none; } #psPlaceHolder { display: none; } #psExpand { display: none; } While it has become increasingly apparent that individuals and organizations need a security metrics program, it has been exceedingly difficult to define exactly what that means in a given situation. There are hundreds of metrics to choose from and an organization’s mission, industry, and size will affect the nature and scope of the task as well as the metrics and combinations of metrics appropriate to accomplish it. Finding the correct formula for a specific scenario calls for a clear concise guide with which to navigate this sea of information.

Special Offers and Product Promotions

Buy $50 in qualifying physical textbooks, get $5 in Amazon MP3 Credit. Here's how (restrictions apply)

Frequently Bought Together

Customers buy this book with User's Guide to Cryptography and Standards (Artech House Computer Security Library) by Alex W. Dent Hardcover $85.46

Price For Both: $191.00

Show availability and shipping details

This item: Complete Guide to Security and Privacy Metrics: Measuring Regulatory Compliance, Operational Resilience, and ROI by Debra S. Herrmann Hardcover

In Stock.
Ships from and sold by Amazon.com.
This item ships for FREE with Super Saver Shipping. Details

User's Guide to Cryptography and Standards (Artech House Computer Security Library) by Alex W. Dent Hardcover

In Stock.
Ships from and sold by Amazon.com.
This item ships for FREE with Super Saver Shipping. Details

This item: Complete Guide to Security and Privacy Metrics: Measuring Regulatory Compliance, Operational Resilience, and ROI by Debra S. Herrmann Hardcover
In Stock.
Ships from and sold by Amazon.com.
This item ships for FREE with Super Saver Shipping. Details
User's Guide to Cryptography and Standards (Artech House Computer Security Library) by Alex W. Dent Hardcover
In Stock.
Ships from and sold by Amazon.com.
This item ships for FREE with Super Saver Shipping. Details

Customers Who Bought This Item Also Bought

IT Security Metrics: A Practical Framework for Me... by Lance Hayden
5.0 out of 5 stars (4)

$26.69
User's Guide to Cryptography and Standards (A... by Alex W. Dent
5.0 out of 5 stars (1)

$85.46
Security Metrics: Replacing Fear, Uncertainty,... by Andrew Jaquith
4.4 out of 5 stars (22)

$33.73
Information Security Management Metrics:... by W. Krag Brotby CISM
5.0 out of 5 stars (1)

$69.09
Defeating the Hacker: A non-technical guide t... by Robert Schifreen
4.7 out of 5 stars (3)

$26.39
The Ten-Day MBA 3rd Ed.: A Step-By-Step Gui... by Steven A. Silbiger
4.3 out of 5 stars (82)

$11.55

Editorial Reviews

Review

"Provides valuable directions on how measurement works and what goes into producing a useful metric. … when faced with the necessity of developing a metrics program to measure the effectiveness of some aspect of your security efforts, this rather imposing tome is one I would recommend as a way to jumpstart your efforts. The master table in the introduction provides a quick guide to the particular section most relevant to the reader’s need …”
— Richard Austin, in IEEE Cipher, June 2007

"... a useful reference for individuals who must meet the challenge of selecting good metrics."
—Cheryl Washington, Information Security Officer, California State University, in Educause Quarterly

About the Author

U.S. Nuclear Regulatory Commission, Washington, D.C., USA

Product Details

Hardcover: 848 pages
Publisher: Auerbach Publications; 1 edition (January 22, 2007)
Language: English
ISBN-10: 0849354021
ISBN-13: 978-0849354021
Product Dimensions: 10.1 x 7.1 x 1.9 inches
Shipping Weight: 3.7 pounds (View shipping rates and policies)

Average Customer Review: 5.0 out of 5 stars See all reviews (1 customer review)

Amazon Best Sellers Rank: #953,131 in Books (See Top 100 in Books)

Would you like to update product info or give feedback on images?

More About the Author

› Visit Amazon's Debra S. Herrmann Page

Discover books, learn about writers, read author blogs, and more.

Customer Reviews

1 Review

5 star:		(1)
4 star:		(0)
3 star:		(0)
2 star:		(0)
1 star:		(0)

Average Customer Review

5.0 out of 5 stars (1 customer review)

Share your thoughts with other customers:

Create your own review

Most Helpful Customer Reviews

17 of 18 people found the following review helpful:

5.0 out of 5 stars The Oracle of Metrics (and I am not talking about the company), March 8, 2007

Nikk Gilbert (Japan) - See all my reviews

This review is from: Complete Guide to Security and Privacy Metrics: Measuring Regulatory Compliance, Operational Resilience, and ROI (Hardcover)

***This is a big book full of a lot of facts and figures.*** (Yes a very big book, not a cover to cover book.) 824 pages, 5 chapters and by no means a read it from cover to cover book. The first two chapters, the "Introduction" and "the What's and Whys of Metrics" are the authors interesting and quite knowledgeable overview of the world of operational, personal, physical and IT security metrics. After, the remaining chapters get in-depth. Chapter 3 "Measuring Compliance" goes into great detail about relating the different acts, bills, regulations and directives with various Metrics. Chapter 4 "Measuring Resilience" provides numerous worksheets and questionnaires as well as an abundance of information regarding threats, asset protection, mission protection, audit trails and others. Finally Chapter 5 "Measuring ROI" covers cost, benefits, some case studies and comparative analysis as well again some great worksheets.
A very useful and well organized guide. (Although a bit on the expensive side)

Help other customers find the most helpful reviews

Was this review helpful to you? Yes No

Report abuse | Permalink

Comment Comment

Share your thoughts with other customers: Create your own review

› See the customer review...

Inside This Book (learn more)

Key Phrases - Statistically Improbable Phrases (SIPs): (learn more)
security impact analysis, operational security controls, privacy impact analysis, likely useful life span, electronic security perimeter, cyber security standards, privacy metrics, asset criticality, critical cyber assets, business partner confidence, data subject records, operational control flows, sustaining that goal, residual information protection, loss event profile, annual tangible benefits, personnel security controls, definite insiders, design structure complexity, likely payback period, physical access rights, risk mitigation allocation, security management roles, threat being instantiated, resilience metrics

Key Phrases - Capitalized Phrases (CAPs): (learn more)
United States, Patriot Act, Privacy Act, Data Protection Act, Privacy Guidelines, Security Guidelines, Data Integrity Board, Privacy Commissioner, Sarbanes-Oxley Act, Data Protection Directive, Attorney General, Federal Register, Personal Health Information Act, Supervisory Authority, Public Law, Definition Value Value Interpretation, Metric Target Observed, Black's Law, United Kingdom, Common Criteria, Department of Homeland Security, Homeland Security Presidential Directives, Use Limitation, Data Protection Commissioner, Federal Information Security Management Act

New!
Books on Related Topics | Concordance | Text Stats

Books on Related Topics (learn more)

The CISSP and CAP Prep Guide by Russell Dean Vines

Discusses:

What Other Items Do Customers Buy After Viewing This Item?

IT Security Metrics: A Practical Framework for Measuring Security & Protecting Data by Lance Hayden Paperback
5.0 out of 5 stars (4)

$26.69

User's Guide to Cryptography and Standards (Artech House Computer Security Library) by Alex W. Dent Hardcover
5.0 out of 5 stars (1)

$85.46

Security Metrics: Replacing Fear, Uncertainty, and Doubt by Andrew Jaquith Paperback
4.4 out of 5 stars (22)

$33.73

Applied Security Visualization by Raffael Marty Paperback
4.7 out of 5 stars (9)

$40.05

› Explore similar items

Tags Customers Associate with This Product

(What's this?)

Click on a tag to find related items, discussions, and people.

metrics(1)

risk assessment(1)

roi(1)

security(1)

Agree with these tags?

.jsOffDisplayBlock { display: block; } .jsOffDisplayInline { display: inline; } .jsOffVisibility { visibility: visible; } .jsOnDisplayBlock { display: none; } .jsOnDisplayNoneBlock { display: block; } .jsOnDisplayNoneInline { display: inline; } .jsOnDisplayInline { display: none; } .jsOnVisibility { visibility: hidden; } .jqOnDisplayBlock { display: none; } .jqOnDisplayInline { display: none; } .jqOnVisibility { visibility: hidden; } .jqOnDisplayNoneBlock { display: block; } .jqOnDisplayNoneInline { display: inline; }

Customer Discussions

This product's forum

Discussion	Replies	Latest Post
No discussions yet

Ask questions, Share opinions, Gain insight

Start a new discussion

Topic:

First post:

Receive e-mail when new posts are made

Prompts for sign-in

Guidelines

Active discussions in related forums

Discussion	Replies	Latest Post
Textbook Buyback forum Returned book in bad condition/Sent as new	2	3 hours ago
Textbook forum I just received a "very good" textbook without its disc - what are your thoughts?	168	14 hours ago
Textbook Buyback forum Ebooks	5	18 hours ago
Textbook Buyback forum Books containing highlights	7	2 days ago
Textbook Buyback forum Is it OK if I used it to nudge several people towards Death Valley with it?	2443	2 days ago
Textbook Buyback forum Book's condition	13	2 days ago
Textbook Buyback forum Pre-paid shipping label help	4	2 days ago
Textbook forum Never buy school textbooks. Download them to your reading device or computer	3	2 days ago