Engineering & Transportation
Qty:1
  • List Price: $98.95
  • Save: $13.70 (14%)
Only 12 left in stock (more on the way).
Ships from and sold by Amazon.com.
Gift-wrap available.
Information Security Gove... has been added to your Cart
+ $3.99 shipping
Used: Good | Details
Condition: Used: Good
Comment: May NOT include supplemental materials such as CDs and access codes. May include some highlighting or writing. Ships next business day! Choose expedited shipping for delivery in 2-6 business days! Excellent customer service!
Access codes and supplements are not guaranteed with used items.
Sell yours for a Gift Card
We'll buy it for $11.15
Learn More
Trade in now
Have one to sell? Sell on Amazon
Flip to back Flip to front
Listen Playing... Paused   You're listening to a sample of the Audible audio edition.
Learn more
See this image

Information Security Governance: A Practical Development and Implementation Approach Hardcover – April 13, 2009

ISBN-13: 978-0470131183 ISBN-10: 0470131187 Edition: 1st

Buy New
Price: $85.25
26 New from $72.62 19 Used from $67.95
Amazon Price New from Used from
Hardcover
"Please retry"
$85.25
$72.62 $67.95
Free Two-Day Shipping for College Students with Amazon Student Free%20Two-Day%20Shipping%20for%20College%20Students%20with%20Amazon%20Student


Hero Quick Promo
Save up to 90% on Textbooks
Rent textbooks, buy textbooks, or get up to 80% back when you sell us your books. Shop Now
$85.25 FREE Shipping. Only 12 left in stock (more on the way). Ships from and sold by Amazon.com. Gift-wrap available.

Frequently Bought Together

Information Security Governance: A Practical Development and Implementation Approach + Security Policies And Implementation Issues (Information Systems Security & Assurance)
Price for both: $171.34

Buy the selected items together

Editorial Reviews

From the Back Cover

The Growing Imperative Need for Effective Information Security Governance

With monotonous regularity, headlines announce ever more spectacular failures of information security and mounting losses. The succession of corporate debacles and dramatic control failures in recent years underscores the necessity for information security to be tightly integrated into the fabric of every organization. The protection of an organization's most valuable asset information can no longer be relegated to low-level technical personnel, but must be considered an essential element of corporate governance that is critical to organizational success and survival.

Written by an industry expert, Information Security Governance is the first book-length treatment of this important topic, providing readers with a step-by-step approach to developing and managing an effective information security program. Beginning with a general overview of governance, the book covers:

  • The business case for information security

  • Defining roles and responsibilities

  • Developing strategic metrics

  • Determining information security outcomes

  • Setting security governance objectives

  • Establishing risk management objectives

  • Developing a cost-effective security strategy

  • A sample strategy development

  • The steps for implementing an effective strategy

  • Developing meaningful security program development metrics

  • Designing relevant information security management metrics

  • Defining incident management and response metrics

  • Complemented with action plans and sample policies that demonstrate to readers how to put these ideas into practice, Information Security Governance is indispensable reading for any professional who is involved in information security and assurance.

About the Author

Krag Brotby, cism, has more than twenty-five years of experience in the computer security field with a focus on governance, metrics, and architecture. A frequent presenter at security conferences, he has authored a variety of publications on information security risk management, governance, and metrics. A principal author and editor of the ISACA CISM review manual and related presentation materials, he has served on the CISM Practice Analysis Task Force defining the information security practice area for the coming years.

NO_CONTENT_IN_FEATURE

China
Engineering & Transportation Books
Discover books for all types of engineers, auto enthusiasts, and much more. Learn more

Product Details

  • Hardcover: 220 pages
  • Publisher: Wiley; 1 edition (April 13, 2009)
  • Language: English
  • ISBN-10: 0470131187
  • ISBN-13: 978-0470131183
  • Product Dimensions: 6.4 x 0.7 x 9.7 inches
  • Shipping Weight: 14.4 ounces (View shipping rates and policies)
  • Average Customer Review: 4.5 out of 5 stars  See all reviews (4 customer reviews)
  • Amazon Best Sellers Rank: #1,380,924 in Books (See Top 100 in Books)

More About the Author

Discover books, learn about writers, read author blogs, and more.

Customer Reviews

4.5 out of 5 stars
5 star
75%
4 star
0%
3 star
25%
2 star
0%
1 star
0%
See all 4 customer reviews
Share your thoughts with other customers

Most Helpful Customer Reviews

2 of 2 people found the following review helpful By Dr. G. Hinson on January 20, 2011
Format: Hardcover Verified Purchase
While inevitably introducing related aspects such as general/corporate governance and management, information, risk and information security management, and IT security operations, the book's prime focus is firmly on the governance of information security. A rational process for determining the strategy and defining desirable outcomes and strategic objectives for information security runs like a center-line from start to finish.

This is an advanced management topic of direct concern to senior information security, risk management and related assurance professionals. Although unfortunately only CISOs or CIOs may be prepared to set aside the time needed to really study a book of this depth, it is equally valuable for all C-suite executive managers and board members with a genuine interest in aligning information security with other business objectives.

As with Krag's complementary book on security metrics (Information Security Management Metrics: A Definitive Guide to Effective Security Monitoring and Measurement), the depth of coverage is a little inconsistent with a couple of the chapters, including the conclusion, being surprisingly short. Chapter three on legal and regulatory requirements, for instance, is just over three pages long although compliance is undoubtedly an important governance issue and, unfortunately, a major strategic driver in this field. To be fair, most of the laws, regulations and standards are self-explanatory and there are hundreds, maybe thousands of them across the globe so there would be little point in going through them in detail here.
Read more ›
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
Format: Hardcover Verified Purchase
The content of this book is very good and its nice to bring it all into one place. But, its a very expensive book for material that can be located in so many other places. I was hoping for a little more practice experience by the author based on the person I received the recommendation from.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
By mcapont on November 4, 2014
Format: Hardcover Verified Purchase
Great! Thanks!
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
0 of 1 people found the following review helpful By Joy Wesley on July 16, 2014
Format: Hardcover Verified Purchase
Excellent!
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again

Set up an Amazon Giveaway

Amazon Giveaway allows you to run promotional giveaways in order to create buzz, reward your audience, and attract new followers and customers. Learn more
Information Security Governance: A Practical Development and Implementation Approach
This item: Information Security Governance: A Practical Development and Implementation Approach
Price: $98.95 $85.25
Ships from and sold by Amazon.com