Information Security Management Handbook, Fourth Edition, Volume I (Hardcover)

by Harold F. Tipton (Editor), (Editor)
Key Phrases: personnel security screening, handshake protocol, workgroup switch, Information Security Management Handbook, Fibre Channel, United States (more...)

Editorial Reviews

Review
A wonderful supplement [to the study guide]. … [H]eavy on practical examples and real-world scenarios … . [The book is] excellent.
- Technical Support, Dec. 2004
This is a must-have book for those preparing for the CISSP exam and for any information security professional.
- Zentralblatt MATH 1054, May 2005 --This text refers to an out of print or unavailable edition of this title.

Product Description
Since 1993, the Information Security Management Handbook has served not only as an everyday reference for information security practitioners but also as an important document for use by practitioners to conduct the intense review necessary to prepare for the Certified Information System Security Professional (CISSP) examination. Preparing for the examination is a major effort because it requires a thorough understanding of the topics contained in the Common Body of Knowledge (CBK) for the field as specified in the Generally Accepted Systems Security Principles (GASSP). The handbook is one of the most important references used by candidates preparing for the exam.The Information Security Management Handbook maps the ten domains of the Common Body of Knowledge tested on the certification examination: access control issues and methodology, telecommunications and network security, security management practices, applications and systems development security, cryptography, security architecture and models, operations security, business continuity planning and disaster recovery planning, law, investigations, and ethics, and physical security. The Information Security Management Handbook is a "must have" book, whether you're preparing for the CISSP exam or need a comprehensive, up-to-date reference, or both.

See all Editorial Reviews

Product Details

• Hardcover: 728 pages
• Publisher: AUERBACH; 4 Sub edition (October 28, 1999)
• Language: English
• ISBN-10: 0849398290
• ISBN-13: 978-0849398292
• Product Dimensions: 9.3 x 6.3 x 1.7 inches
• Shipping Weight: 2.6 pounds
• Average Customer Review: 3.5 out of 5 stars See all reviews (41 customer reviews)
• Amazon.com Sales Rank: #1,053,456 in Books (See Bestsellers in Books)

Customer Reviews

Most Helpful Customer Reviews

35 of 37 people found the following review helpful:

5.0 out of 5 stars Not written as an exam guide & is Vol 1 of 3 volumes, July 20, 2002

By	Mike Tarrani "www.tarrani.com" (Deltona, FL USA) - See all my reviews (TOP 500 REVIEWER)    (REAL NAME)    (COMMUNITY FORUM 04)

This book is a collection of papers that covers the ten domains of the Common Body of Knowledge (CBK) Generally Accepted Systems Security Principles (GASSP). As a compendium of knowledge from acknowledged experts this book represents an exceptionally valuable tool for security practitioners, and because the papers are grouped by CBK domain, it is also a useful study aid for anyone who is pursuing CISSP certification.

The papers, individually and collectively, contain a wealth of information. However, anyone who wants to use this book as a resource for preparing for the CISSP exam should know that this book is Volume 1 of a three volume set. Moreover, this is not a book that was written as a study guide as much as a professional reference, and it isn't the only book a CISSP candidate should read.

For the practitioner this book is an excellent investment because it does cover all ten CBK domains in great detail. However, I recommend investing in the CD ROM version of this book (Information Security Management Handbook on CD-ROM, ISBN 0849312345), which contains this book and Volumes 2 and 3. The CD ROM is more up-to-date and is more convenient then three books that combined contain nearly 2000 pages.

Regardless of whether you opt for this book or the CD ROM, you'll gain a wealth of knowledge from this book and if used in conjunction with other sources of information you will be well prepared to pass the CISSP exam.

37 of 40 people found the following review helpful:

3.0 out of 5 stars Information Security Management Handbook, March 28, 2000

By	John Bumgarner - See all my reviews

Overall the book provides an excellent overview of the information security arena. The length of the text is 728 pages, which is not light reading, but it is still in line within other books in the same category. The book is a compilation of several white papers on important topics relevent to information security. I used the handbook as a reference when studying for the Certified Information Systems Security Professional (CISSP) exam. I would recommended reading it, especially if you have limited knowledge in some of the exam's core areas.

20 of 21 people found the following review helpful:

5.0 out of 5 stars CD ROM version significantly different from paper version, July 20, 2002

By	Mike Tarrani "www.tarrani.com" (Deltona, FL USA) - See all my reviews (TOP 500 REVIEWER)    (REAL NAME)    (COMMUNITY FORUM 04)

This review is from: Information Security Management Handbook on CD-ROM, 2002 Edition (CD-ROM)

Don't confuse this CD ROM with the book that is being sold under the same title (ISBN 0849398290) because there are some major differences besides the media on which the material is provided.

The book is actually Volume 1 of the Information Security Handbook, Fourth Edition. This CD ROM contains Volume 1, plus Volumes 2 and 3 of the handbook, making it a more complete compilation of the material that encompasses the ten domains of the Common Body of Knowledge (CBK) of Generally Accepted Systems Security Principles (GASSP). See the product page for Volume 1 for reviews and a complete description of that subset of this CD ROM.

Volumes 2 and 3, like Volume 1 are aligned to the ten domains, but have more up-to-date material and new papers addressing a wider array of topics. Moreover, CISSP candidates will find a great deal more study material, and working practitioners will find information that covers emerging trends and technologies that have surfaced since Volume 1 was published.

The new or expanded material of the two additional volumes on this CD ROM are:

Volume 2 - (published in 2000), goes deeper in network security, but also covers interesting topics such as single-signon (will be of particular interest to organizations implementing LDAP), centralized authentication, and related topics in addition to newer coverage in each of the ten CBKs.

Volume 2 (published in 2001), is an overall update for each of the CBKs and contains a lot of fresh material that is fair game for CISSP exam questions, as well as a compendium of fresh material for practitioners.

In addition to the convenience of having all of this material on a CD ROM vs. over ten pounds of paper, the contents are searchable using the built in search facility, and can be printed when hard copy is required. This is a nice feature for consultants who can bring a wealth of reference material on site for quick cross-referencing during assessments or developing action plans that are consistent with the GASSP. Of course, the fact that this collection is more complete, comprehensive and up-to-date than the book by the same title makes this an attractive choice for anyone who requires working references or wants to prepare for the CISSP examination.