Mapping Security The Corporate Security Sourcebook for Today's Global Economy

Compelling and practical view of computer security in a multinational environment - for everyone who does business in more than one country.

About the Author

Tom Patterson is a business advisor in the areas of security, commerce, and governance.

Patterson has been a successful international security and eCommerce partner at both KPMG and Deloitte, a strategy executive with IBM's Internet Division, and a director of security at MCC, Americas leading R&D consortium. Tom has been a board member of several public companies, has advised all three branches of the U.S. government on Internet and security policy, and is a trusted advisor to company executives around the world.

Patterson regularly comments on the security issues of the day for CNBC and other major media outlets. His track record of success in large scale eCommerce, with three separate projects that have each generated over 500 million dollars online, has him in demand as an author, public speaker, board member, and business advisor.

He currently resides in Pacific Palisades, California, with his wife and son. More information about the author is available at http://www.TPatterson.NET.

© Copyright Pearson Education. All rights reserved.

Mapping Security Preface The 5 W's of Mapping Security Why Mapping Security I have writtenMapping Securityin response to questions I have fielded from corporate executives, businessmen and -women, corporate security officers, and people seated next to me on airplanes. The queries usually fall along the same lines, as follows: How much should my company be spending on security? What do these new security and privacy rules really mean to my organization? What are my peers doing about security? Now that I have gone global, what else do I have to do? (perhaps the most frequently asked question) Importantly, I wrote this book because I have found that many of the answers to questions about security are the same around the world, and--critically--many of the answers are different, depending on where in the world your are working. This reality--linked closely to country-by-country nuances--is reinforced as you read on. Even though I have now already used the wordsecuritysix times the first two paragraphs alone, guess what.Mapping Securityis not a run-of-the-mill, technically written volume like the vast majority of its predecessors. This book does not show you how to write a security plan or write an encryption algorithm. It is really a business book that is enabled by a business understanding of what is important in managing your corporate risk. It is written for business people around the world, and it is written with today's global economy in mind. If Not Now, When? Okay, so that's the reasonwhyI wrote this book.Whenis a function of today's global economy and the risks from our increased reliance on technology. Because of supply chains, customer bases, outsourcing, and just traditional growth, more organizations than ever before are crossing borders. Therefore they are now doing business in different countries and having to change the way they look at security for the first time. Combine this global nature of business today with our great reliance on computers and communications, and we have the highest levels of threats to integral business infrastructure in history. It is time security moves to the front and center of the corporate psyche. To do that, we need a security map that spells out the realities of security, embraces all aspects of a global business, demystifies it with straight talk, and makes it accessible to entire organizations. Everyone today needs to be well armed with an understanding of the facts. Security has traditionally hidden behind esoteric discussions of cryptographic key lengths, seemingly unfathomable rules and regulations, a hacker mystique, and, often, deliberate doublespeak. Now, with technology poised to deliver the cost savings and growth needed to survive and thrive in today's global economy, it is the right time to cultivate corporate-wide understanding that leads to embracing security as the business enabler that it can be. Because companies are now working across foreign borders--and must understand foreign security rules, regulations, best practices, and the local security cultures--I have pulled together dozens of experts from different locales around the world, all of whom help to explain "their side" of the security equations you must deploy. Today iswhenwe need solutions that both protect us and enable our growth. What Makes This Book Different? ThewhatofMapping Securityis straightforward and comprises three simple parts. Part 1, "Charting a Course," will help people in any organization, anywhere in the world, reduce their risks and maximize their rewards. It outlines and illustrates six business "inside