Author: Scott Ellis
Publisher:
ISBN: 9781519090348
Category :
Languages : en
Pages : 53
Book Description
This guide provides a complete road-map for building, maintaining, and augmenting an information security program based on IT security best practices and standards. It provides all of the basic information needed to perform as a high-functioning information security manager or CISO / CSO. It looks at the role of the CISO, and includes the following: The CISO Skillsets, Building a Security Program from Scratch, Security Organization Models, Communications and Executive Buy-in, and Executive Reporting. It introduces the 80/20 rule for CISO's. If you are responsible for running the information security program, this guide is for you. It talks about performing risk assessments (NIST, HIPAA, PCI DSS), developing a plan of action and tactical and strategic security plans. It talks about developing security policies and procedures. It introduces the concept of security prioritization, data classification, and data protection. The overall goal is to provide you with a template that illustrates everything needed to build, maintain, or augment a security program successfully.