Information security management : concepts and practice
/ Bel G. Raggad
- xxxiv, 832 pages : illustrations
Includes bibliographical references and index.
Section I. Introduction Introduction to information security management Introduction to management concepts The information security life cycle Section II. Security plan Security plan Security policy Business continuity planning Section III. Security analysis Security risk management Continual security : integrated fault-event analysis and response framework (IFEAR) Active security assessment System availability Section IV. Security design Nominal security enhancement design based on ISO/IEC 27002 Technical security enhancement based on ISO/IEC 27001 Section V. Security implementation The common criteria Section IV. Security review Privacy rights, information technology, and HIPAA Section VII. Continual security Cyberterrorism and homeland security