Information Security Architecture, Second Edition
|
List price: $79.95 Amazon price: $57.56 You save: $22.39 (28%) Prices subject to change. Used price: $57.56 Availability: Buy Now at Amazon |
Product Details
Author: Jan Killmeyer
Binding: Kindle Edition
Format: Kindle BookLabel: Taylor & Francis
Manufacturer: Taylor & Francis
Publisher: Taylor & Francis
Release Date: April 16, 2007
Number of items: 1
Number of pages: 424
Publication date: April 16, 2007
Studio: Taylor & Francis
Ratings & Comments (Average:
)
- Book is a good foundation upon which to build a security architectureArchitecture is the art and science of designing buildings and other structures. Using some creative license, it also encompasses the design of any entity, including information systems and their security components. But while no one would build a building without an architect, IT departments routinely design computer systems without considering the security architecture, instead believing that firewalls and other devices are quick and durable fixes.
Nothing could be further from the truth. In Information Security Architecture, author Jan Killmeyer Tudor shows that an effective and comprehensive information security infrastructure is best developed within the framework of an information security architecture (ISA), given today's distributed nature of client/server computing. In the past, when systems were closed and proprietary, security wasn't as compelling a need as it is in today's open systems.
The book covers important ISA issues such as the nature of the organization, policies and standards, baselines and risk assessment, awareness and training, compliance, and more. An underlying message is that these components must work in concert to form a cohesive ISA. Hardware and software are ineffective if they are not integrated into the ISA.
A dominant theme throughout is that implementing security technologies requires an understanding not only of the technologies' return on investment to the organization but also of the risks and vulnerabilities related to these technologies. This ISA methodology gives security professionals an excellent method for achieving just that.
Given how important policy is to an ISA, the book has several appendices that include policies, procedures, and work plans. These provide a fine foundation upon which to build a security architecture.
- Is there a lower rating available?As a Certified Information Systems Security Professional, I can definitively state that this book does not cover everything that needs to be covered or in any depth whatsoever. I got this book based on the glowing reviews I found here, and I'm at a loss as to why these reviews would have recommended it.
The most aggrevating part about this book is the subtitle "An Integrated Approach to Security in the Organization." The book not only lacks effective security integration techniques, it doesn't seem to address the entire organization where it tries its half-hearted integration.
- Unrealistic DrivelI question the security background of any of those who read this book and gave it a good review. The author's approach security leaves huge gaps and what is covered is written in a simplistic form... probably because the author only understands a small amount of the topic she is writing about.
I question the author's own ability to secure an environment, and she should probably not be teaching others.
- Information Security Architechture by Jan TudorI am a CSS student with the College of North Atlantic, St.John's
, Newfoundland. I think that Jan Tudor has put together the "manual" for security within the buisness structure. I am amazed at the debt and scope of this book as there is no stone unturned and information technology people would be at a loss not to read and understand just how security or the lack of it can make or break a buisness, large or small.A true work of art, thanks Jan.
- THOROUGH REFERENCE GUIDEThis was a great reference to start an Information Security Architecture project. There are many guidelines, procedures and forms that take the guess work out of the administration of such a project. The book is great at keeping you on track with your security objectives. I have found that it is so easy with such large projects to lose sight of the objectives. Security is not only technical assessments of the network and operating components but also a combination of management and administration of personnel, policies and procedures and continuous application of pressure to meeting the security requirements of an organization. This book provides excellent value for the price.
Kroll Ontrack Provides One of the Best Email Recovery Software
A data recovery software provider that offers both do-it-yourself software and data recovery services needed to retrieve the lost, deleted or damaged email files as well as other Microsoft Exchange Server items. read more
Things to Consider In Developing a Data Recovery Plan
There are a lot of tools that are proven to be very helpful in making a data disaster recovery plan. One of these support tools is the BCP Generator. BCP generator is a simple tool that has a relatively low cost that can be used by the planners. It gives aid in checking the contingency status of the business. It involves a regular review and audit of the possible incidents that may happen and the back-up arrangements. read more
Secured Forensic Data Recovery
When it comes to the preservation, recovery and analysis of digital evidence, a special data recovery is needed. It is called as Forensic Data Recovery. One of the leading providers of forensic data recovery is the FDR Forensic Data Recovery Inc. Forensic Data Recovery Inc. read more
GetDataBack Data Recovery Software
The GetDataBack Data recovery Software is a very powerful tool designed not only to undelete your deleted files or partitions but also to recover your data in a disk. It can also be used in formatting your drive, fixing power failure, fixing software failure and preventing virus attacks. read more
A data recovery software provider that offers both do-it-yourself software and data recovery services needed to retrieve the lost, deleted or damaged email files as well as other Microsoft Exchange Server items. read more
Things to Consider In Developing a Data Recovery Plan
There are a lot of tools that are proven to be very helpful in making a data disaster recovery plan. One of these support tools is the BCP Generator. BCP generator is a simple tool that has a relatively low cost that can be used by the planners. It gives aid in checking the contingency status of the business. It involves a regular review and audit of the possible incidents that may happen and the back-up arrangements. read more
Secured Forensic Data Recovery
When it comes to the preservation, recovery and analysis of digital evidence, a special data recovery is needed. It is called as Forensic Data Recovery. One of the leading providers of forensic data recovery is the FDR Forensic Data Recovery Inc. Forensic Data Recovery Inc. read more
GetDataBack Data Recovery Software
The GetDataBack Data recovery Software is a very powerful tool designed not only to undelete your deleted files or partitions but also to recover your data in a disk. It can also be used in formatting your drive, fixing power failure, fixing software failure and preventing virus attacks. read more
){kind=link}