Securing an IT Organization through Governance Risk Management and Audit Internal Audit and IT Audit Ken E Sigler James L Rainey III 9781498737319 Books PDF File Securing%20an%20IT%20Organization%20through%20Governance%20Risk%20Management%20and%20Audit%20Internal%20Audit%20and%20IT%20Audit%20Ken%20E%20Sigler%20James%20L%20Rainey%20III%209781498737319%20Books
NQF
PDF File Securing an IT Organization through Governance Risk Management and Audit Internal Audit and IT Audit Ken E Sigler James L Rainey III 9781498737319 Books NQF
Past events have shed light on the vulnerability of mission-critical computer systems at highly sensitive levels. It has been demonstrated that common hackers can use tools and techniques downloaded from the Internet to attack government and commercial information systems. Although threats may come from mischief makers and pranksters, they are more likely to result from hackers working in concert for profit, hackers working under the protection of nation states, or malicious insiders.
Securing an IT Organization through Governance, Risk Management, and Audit introduces two internationally recognized bodies of knowledge Control Objectives for Information and Related Technology (COBIT 5) from a cybersecurity perspective and the NIST Framework for Improving Critical Infrastructure Cybersecurity (CSF). Emphasizing the processes directly related to governance, risk management, and audit, the book provides details of a cybersecurity framework (CSF), mapping each of the CSF steps and activities to the methods defined in COBIT 5. This method leverages operational risk understanding in a business context, allowing the information and communications technology (ICT) organization to convert high-level enterprise goals into manageable, specific goals rather than unintegrated checklist models.
The real value of this methodology is to reduce the knowledge fog that frequently engulfs senior business management, and results in the false conclusion that overseeing security controls for information systems is not a leadership role or responsibility but a technical management task. By carefully reading, implementing, and practicing the techniques and methodologies outlined in this book, you can successfully implement a plan that increases security and lowers risk for you and your organization.
Ken E. Sigler, James L. Rainey III,Securing an IT Organization through Governance, Risk Management, and Audit (Internal Audit and IT Audit),Auerbach Publications,1498737315,Information Management,Information Technology,Security - General,Information technology - Management,BUSINESS ECONOMICS,BUSINESS ECONOMICS / Information Management,Business Economics/Leadership,Business / Economics / Finance,Business/Economics,COMPUTERS,COMPUTERS / Information Technology,COMPUTERS / Security / General,CobiT 5,CobiT 5; Cybersecurity Framework (CSF); compliance; governance; IT audit; risk,Computer Applications,Computer security,Computers/Information Technology,Computers/Security - General,Cybersecurity Framework (CSF),General,IT audit,Network management,Non-Fiction,Scholarly/Graduate,Security,TEXT,United States,compliance,governance,risk,BUSINESS ECONOMICS / Information Management,Business Economics/Leadership,COMPUTERS / Information Technology,COMPUTERS / Security / General,Computers/Information Technology,Computers/Security - General,Business / Economics / Finance,Business Economics,Business/Economics,Computer security,Network management
Securing an IT Organization through Governance Risk Management and Audit Internal Audit and IT Audit Ken E Sigler James L Rainey III 9781498737319 Books Reviews :
Past events have shed light on the vulnerability of mission-critical computer systems at highly sensitive levels. It has been demonstrated that common hackers can use tools and techniques downloaded from the Internet to attack government and commercial information systems. Although threats may come from mischief makers and pranksters, they are more likely to result from hackers working in concert for profit, hackers working under the protection of nation states, or malicious insiders.
Securing an IT Organization through Governance, Risk Management, and Audit introduces two internationally recognized bodies of knowledge Control Objectives for Information and Related Technology (COBIT 5) from a cybersecurity perspective and the NIST Framework for Improving Critical Infrastructure Cybersecurity (CSF). Emphasizing the processes directly related to governance, risk management, and audit, the book provides details of a cybersecurity framework (CSF), mapping each of the CSF steps and activities to the methods defined in COBIT 5. This method leverages operational risk understanding in a business context, allowing the information and communications technology (ICT) organization to convert high-level enterprise goals into manageable, specific goals rather than unintegrated checklist models.
The real value of this methodology is to reduce the knowledge fog that frequently engulfs senior business management, and results in the false conclusion that overseeing security controls for information systems is not a leadership role or responsibility but a technical management task. By carefully reading, implementing, and practicing the techniques and methodologies outlined in this book, you can successfully implement a plan that increases security and lowers risk for you and your organization.
Ken E. Sigler, James L. Rainey III,Securing an IT Organization through Governance, Risk Management, and Audit (Internal Audit and IT Audit),Auerbach Publications,1498737315,Information Management,Information Technology,Security - General,Information technology - Management,BUSINESS ECONOMICS,BUSINESS ECONOMICS / Information Management,Business Economics/Leadership,Business / Economics / Finance,Business/Economics,COMPUTERS,COMPUTERS / Information Technology,COMPUTERS / Security / General,CobiT 5,CobiT 5; Cybersecurity Framework (CSF); compliance; governance; IT audit; risk,Computer Applications,Computer security,Computers/Information Technology,Computers/Security - General,Cybersecurity Framework (CSF),General,IT audit,Network management,Non-Fiction,Scholarly/Graduate,Security,TEXT,United States,compliance,governance,risk,BUSINESS ECONOMICS / Information Management,Business Economics/Leadership,COMPUTERS / Information Technology,COMPUTERS / Security / General,Computers/Information Technology,Computers/Security - General,Business / Economics / Finance,Business Economics,Business/Economics,Computer security,Network management
Securing an IT Organization through Governance, Risk Management, and Audit (Internal Audit and IT Audit) [Ken E. Sigler, James L. Rainey III] on . PPast events have shed light on the vulnerability of mission-critical computer systems at highly sensitive levels. It has been demonstrated that common hackers can use tools and techniques downloaded from the Internet to attack government and commercial information systems. Although threats may come from mischief makers and pranksters
Product details
|