Security Risk Management : Building an Information Security Risk Management Program from the Ground Up

  • ISBN13:


  • ISBN10:


  • Format: Paperback
  • Copyright: 2011-05-17
  • Publisher: Elsevier Science Ltd
  • Purchase Benefits
  • Free Shipping On Orders Over $35!
    Your order must be $35 or more to qualify for free economy shipping. Bulk sales, PO's, Marketplace items, eBooks and apparel do not qualify for this offer.
  • Get Rewarded for Ordering Your Textbooks! Enroll Now
List Price: $49.95 Save up to $7.49
  • Buy New
    Add to Cart Free Shipping


Supplemental Materials

What is included with this book?

  • The New copy of this book will include any supplemental materials advertised. Please check the title of the book to determine if it should include any access cards, study guides, lab manuals, CDs, etc.
  • The eBook copy of this book is not guaranteed to include any supplemental materials. Typically, only the book itself is included. This is true even if the title states it includes any access cards, study guides, lab manuals, CDs, etc.


The goal of Security Risk Management is to teach the reader practical techniques that will be used on a daily basis, while also explaining the fundamentals so s/he understands the rationale behind these practices. Security professionals often fall into the trap of telling the business how they need to do something, but they can't explain why. This book will help the reader to justify the so-called "best practices" that security professionals typically impose on businesses. Includes case studies to provide hands-on experience using risk assessment tools to calculate the costs and benefits of any security investment Explores each phase of the risk management lifecycle, focusing on policies and assessment processes that should be used to properly assess and mitigate risk Covers risk analysis, build, and implementation of security management programs

Table of Contents

Introduction to Risk Management
The Security Evolution
Risky Business
The Risk Management Lifecycle
Risk Profiling
Risk Assessment and Analysis Techniques
Formulating a Risk
Risk Exposure Factors
Security Controls and Services
Risk Evaluation and Mitigation Strategies
Reports and Consulting
Risk Assessment Techniques
Building and Running a Risk Management Program
Threat and Vulnerability Management
Security Risk Reviews
A Blueprint for Security
Building a Program from Scratch
Security Risk Profile
Risk Models and Scales
Architectural Risk Analysis
Table of Contents provided by Publisher. All Rights Reserved.

Rewards Program

Write a Review