Customer Reviews


4 Reviews
5 star:
 (1)
4 star:    (0)
3 star:
 (1)
2 star:    (0)
1 star:
 (2)
 
 
 
 
 
Average Customer Review
Share your thoughts with other customers
Create your own review
 
 

The most helpful favorable review
The most helpful critical review


5.0 out of 5 stars FISMA Principles and Best Practices: Beyond Compliance
Mr. Howard's book, in my opinion is on point, and literally "text book" in terms of its real world applicability. I have used his book as a Information Security Consultant and in the class room, teaching on the subject of Risk Management Framework (RMF). The practical advice on how an organization plans, staffs and successfully executes FISMA and compliance best...
Published 22 months ago by Rob 007

versus
3.0 out of 5 stars Useful reference
I have referenced this book several times and it has been helpful for reporting and general guidance. For Continuous Monitoring I find the NIST publications to be more useful. NIST SP800-137 is the Continuous Monitoring guide and contains a reference to SP800-39 Risk Management (see also 800-37 and 800-30) plus SP800-53 and SP800-53A on understanding and evaluating...
Published 11 days ago by rpm507


Most Helpful First | Newest First

3.0 out of 5 stars Useful reference, October 19, 2014
Verified Purchase(What's this?)
I have referenced this book several times and it has been helpful for reporting and general guidance. For Continuous Monitoring I find the NIST publications to be more useful. NIST SP800-137 is the Continuous Monitoring guide and contains a reference to SP800-39 Risk Management (see also 800-37 and 800-30) plus SP800-53 and SP800-53A on understanding and evaluating controls. I sometimes reference this book to interpret government-speak which can be very handy. The ISO 27000 documentation is also very handy for reinterpreting NIST to business and SP800-53 has a mapping of NIST to ISO in Appendix H. Although it is the 2005 version of ISO 27002 it is still useful to avoid the 'are you speaking Klingon' looks.
Help other customers find the most helpful reviews 
Was this review helpful to you? Yes No


5.0 out of 5 stars FISMA Principles and Best Practices: Beyond Compliance, December 24, 2012
By 
This review is from: FISMA Principles and Best Practices: Beyond Compliance (Hardcover)
Mr. Howard's book, in my opinion is on point, and literally "text book" in terms of its real world applicability. I have used his book as a Information Security Consultant and in the class room, teaching on the subject of Risk Management Framework (RMF). The practical advice on how an organization plans, staffs and successfully executes FISMA and compliance best practices within the organization, quite simply is good, sound advice and it works. Mr. Howard offers usable information that considers the nuances and anomalies associated with IT Security support operations, and provides the framework organizations can use to successfully implement a FISMA compliant IT Security program. Rob Lee, CISSP-ISSEP, CAP
Help other customers find the most helpful reviews 
Was this review helpful to you? Yes No


1 of 2 people found the following review helpful
1.0 out of 5 stars Cheap Binding, March 29, 2013
By 
ADubbs (Annapolis, MD United States) - See all my reviews
Verified Purchase(What's this?)
This review is from: FISMA Principles and Best Practices: Beyond Compliance (Hardcover)
The binding tore and now the book won't close properly and I'll get less for it when I re sell after the semester. The binding was poorly sealed and broke away completeley after only 2 chapters into the book.
Help other customers find the most helpful reviews 
Was this review helpful to you? Yes No


2 of 4 people found the following review helpful
1.0 out of 5 stars PU, what a stinker, December 6, 2012
Verified Purchase(What's this?)
This review is from: FISMA Principles and Best Practices: Beyond Compliance (Hardcover)
I was expecting something better. If an author ties the apron strings of the NIST SP 800-40 Vulnaerability Process to the frayed Irish Pennents of the Risk Mnagement Framework and describes how that fits into the SDLC and Configuration Management Process, they could make a lot of money. However, that is not that book. This is the most expensive and the least valuable book I have bought at Amazon nand it is going back tomorrow. I expected more from CRC as well- since my other CRC references are a little worn from decades of use. Specific flaw in this book (one of Many). On Page 250, an OMB memo is reprinted with FAQ. a TOC is on that page. Since this document is embedded in the book, the page numbers would be wrong if the original numbers were printed.... (OK)... But did they put in correct page numbers? No- the .... TOC Tpoics have no page number reflected. Now, to the more abysurdy... Vulnerability is mentioned on pages 178 and 179 (that is all). You would get more for your money by taking the $71 to Kinkos, and printing the OMB -15 (just google OMB and CYBERSCOPE), then get the FIPS 199 and 200, NIST SP 800 and key words security plan, patch, risk, SDLC, NIST 800-53 and 53A The 800-40 PVM v2 and the draft v3, the -37 Risk Mgt Framewotk, configuration management, cloud computing, etc and you will have what this book could have been (you will also possibly leave with enough money in change to splurge at Starbuck's. Lastly, a book like this needs to cross reference to authorotative edicts so you can reference those (to the boss who is just not getting it), Real references, not the opinion of some Chemical Rubber Company Press Author!. This may be from CRC Press, but this rubber product holds no water.. This book does pass the R.A.H test of having enough pages to hold the covers apart but that is its best feature. . Best of luck in finding a good guide, Rick DeGraffenreid CISSP, Federal Cyber Security Professional, Washington DC.
Help other customers find the most helpful reviews 
Was this review helpful to you? Yes No


Most Helpful First | Newest First

Details

FISMA Principles and Best Practices: Beyond Compliance
FISMA Principles and Best Practices: Beyond Compliance by Patrick D. Howard (Hardcover - March 29, 2011)
$79.95 $53.53
In Stock
Add to cart Add to wishlist
Search these reviews only
Send us feedback How can we make Amazon Customer Reviews better for you? Let us know here.