Overview
- Guides the reader to develop their own organizational security plan
- Provides case studies, PowerPoint lectures, Security Workbook sections
- Includes a chapter on Payment Card Industry’s Data Security Standard (PCI DSS)
- Request lecturer material: sn.pub/lecturer-material
Access this book
Tax calculation will be finalised at checkout
Other ways to access
Table of contents (23 chapters)
-
Part I
-
Part IV
Keywords
About this book
This book demonstrates how information security requires a deep understanding of an organization's assets, threats and processes, combined with the technology that can best protect organizational security. It provides step-by-step guidance on how to analyze business processes from a security perspective, while also introducing security concepts and techniques to develop the requirements and design for security technologies. This interdisciplinary book is intended for business and technology audiences, at student or experienced levels.
Organizations must first understand the particular threats that an organization may be prone to, including different types of security attacks, social engineering, and fraud incidents, as well as addressing applicable regulation and security standards. This international edition covers Payment Card Industry Data Security Standard (PCI DSS), American security regulation, and European GDPR. Developing a risk profile helps to estimate the potential costs that an organization may be prone to, including how much should be spent on security controls.
Security planning then includes designing information security, as well as network and physical security, incident response and metrics. Business continuity considers how a business may respond to the loss of IT service. Optional areas that may be applicable include data privacy, cloud security, zero trust, secure software requirements and lifecycle, governance, introductory forensics, and ethics.
This book targets professionals in business, IT, security, software development or risk. This text enables computer science, information technology, or business students to implement a case study for an industry of their choosing.
.
Authors and Affiliations
About the author
Bibliographic Information
Book Title: Information Security Planning
Book Subtitle: A Practical Approach
Authors: Susan Lincke
DOI: https://doi.org/10.1007/978-3-031-43118-0
Publisher: Springer Cham
eBook Packages: Computer Science, Computer Science (R0)
Copyright Information: The Editor(s) (if applicable) and The Author(s), under exclusive license to Springer Nature Switzerland AG 2024
Hardcover ISBN: 978-3-031-43117-3Published: 17 January 2024
Softcover ISBN: 978-3-031-43120-3Due: 17 February 2024
eBook ISBN: 978-3-031-43118-0Published: 16 January 2024
Edition Number: 2
Number of Pages: XXI, 445
Number of Illustrations: 18 b/w illustrations, 68 illustrations in colour
Topics: Principles and Models of Security, Systems and Data Security, Privacy, Business Information Systems, Legal Aspects of Computing