Complete Guide to Security and Privacy Metrics : Measuring Regulatory Compliance, Operational Resilience, and ROI

Name: Complete Guide to Security and Privacy Metrics : Measuring Regulatory Compliance, Operational Resilience, and ROI
Price: $129.82 USD
Availability: InStock
Author: Herrmann, Debra S.
ISBN: 9781420013283

by Herrmann, Debra S.

ISBN13:
9781420013283
ISBN10:
1420013289
Copyright: 2007-01-22
Publisher: Taylor & Francis
More Book Details

Note: Supplemental materials are not guaranteed with Rental or Used book purchases.

Purchase Benefits

Free Shipping On Orders Over $35!

Your order must be $35 or more to qualify for free economy shipping. Bulk sales, PO's, Marketplace items, eBooks and apparel do not qualify for this offer.
Get Rewarded for Ordering Your Textbooks! Enroll Now
Customer Reviews Read Reviews
Write a Review
Complete Guide to Security and Privacy Metrics : Measuring Regulatory Compliance, Operational Resilience, and ROI > ISBN13: 9781420013283

List Price: ~~$129.95~~ Save up to $37.36

Rent Book

$92.59

More Prices

Rent Book $92.59

Add to Cart Free Shipping

TERM

PRICE

DUE

Semester

$97.46

Dec 12

Quarter

$92.59

Aug 13

Short Term

$87.71

Jul 31

USUALLY SHIPS IN 3-5 BUSINESS DAYS

*This item is part of an exclusive publisher rental program and requires an additional convenience fee. This fee will be reflected in the shopping cart.

Buy New

$129.82

Buy New
$129.82

Add to Cart Free Shipping

USUALLY SHIPS IN 3-5 BUSINESS DAYS

Digital

$112.20*

More Prices

Digital
$112.20*

Add to Cart

DURATION

PRICE

Online: 180 Days

Downloadable: 180 Days - VitalSource

$112.20*

Online: 365 Days

Downloadable: 365 Days - VitalSource

$132.60*

Online: 1825 Days

Downloadable: Lifetime Access - VitalSource

$204.00*

*To support the delivery of the digital material to you, a digital delivery fee of $3.99 will be charged on each digital item.

Summary

While it has become increasingly apparent that individuals and organizations need a security metrics program, it has been exceedingly difficult to define exactly what that means in a given situation. There are hundreds of metrics to choose from and an organization's mission, industry, and size will affect the nature and scope of the task as well as the metrics and combinations of metrics appropriate to accomplish it. Finding the correct formula for a specific scenario calls for a clear concise guide with which to navigate this sea of information.Complete Guide to Security and Privacy Metrics: Measuring Regulatory Compliance, Operational Resilience, and ROI defines more than 900 ready to use metrics that measure compliance, resiliency, and return on investment. The author explains what needs to be measured, why and how to measure it, and how to tie security and privacy metrics to business goals and objectives. The book addresses measuring compliance with current legislation, regulations, and standards in the US, EC, and Canada including Sarbanes-Oxley, HIPAA, and the Data Protection Act-UK. The metrics covered are scaled by information sensitivity, asset criticality, and risk, and aligned to correspond with different lateral and hierarchical functions within an organization. They are flexible in terms of measurement boundaries and can be implemented individually or in combination to assess a single security control, system, network, region, or the entire enterprise at any point in the security engineering lifecycle. The text includes numerous examples and sample reports to illustrate these concepts and stresses a complete assessment by evaluating the interaction and interdependence between physical, personnel, IT, and operational security controls.Bringing a wealth of complex information into comprehensible focus, this book is ideal for corporate officers, security managers, internal and independent auditors, and system developers and integrators.

Introduction
Background
Purpose Scope
How to Get the Most Out of This Book
Acknowledgments
The "Whats" and "Whys" of Metrics
Measurement Basics
Data Collection and Validation
Defining Measurement Boundaries
Whose Metrics?
Uses and Limits of Metrics
Avoiding the Temptation to Bury Your Organization in Metrics
Relation to Risk Management
Examples from Reliability Engineering
Examples from Safety Engineering
Examples from Software Engineering
The Universe of Security and Privacy Metrics
Measuring Compliance with Security and Privacy Regulations and Standards
Financial Industry
Gramm-Leach-Bliley (GLB) Act - United States
Sarbanes-Oxley Act - United States
Healthcare
Health Insurance Portability And Accountability Act (HIPAA) - United States
Personal Health Information Act (PHIA) - Canada
Personal Privacy
Organization for Economic Cooperation and Development (OECD) Privacy, Cryptography, and Security Guidelines
Data Protection Directive - E.C
Data Protection Act - United Kingdom
Personal Information Protection And Electronic Documents Act (PIPEDA) - Canada
Privacy Act - United States
Homeland Security
Federal Information Security Management Act (FISMA) - United States
Homeland Security Presidential Directives (HSPDs) - United States
North American Electrical Reliability Council (NERC) Cyber Security Standards
The Patriot Act - United States
Measuring Resilience of Physical, Personnel, IT, and Operational Security Controls
Physical Security
Personnel Security
IT Security
Operational Security
Measuring Return on Investment (ROI) in Physical, Personnel, IT, and Operational Security Controls
Security ROI Model
Security ROI Primitives, Metrics, and Reports
Appendices
A Glossary of Terms, Acronyms, and Abbreviations
B Additional Resources: Standards
Policies
Publications
Index
Table of Contents provided by Publisher. All Rights Reserved.

Supplemental Materials

What is included with this book?

The New copy of this book will include any supplemental materials advertised. Please check the title of the book to determine if it should include any access cards, study guides, lab manuals, CDs, etc.

The Used, Rental and eBook copies of this book are not guaranteed to include any supplemental materials. Typically, only the book itself is included. This is true even if the title states it includes any access cards, study guides, lab manuals, CDs, etc.