Overview
For an organization to function effectively, its security controls must not be so restrictive that the business is denied the ability to be innovative and flexible. But increasingly pervasive threats mandate vigilance in unlikely areas. Adaptive Security Management Architecture enables security professionals to structure the best program designed to meet the complex needs of an entire organization, taking into account the organization’s business goals as well as the surrounding controls, processes, and units already in existence. Security aligned with business needs Introducing the concept of Adaptive Security Management Architecture (ASMA), the book explains how an organization can develop an adaptive security program closely aligned to business needs, making it an enabling force that helps the organization achieve its goals and objectives. Describing how to achieve this adaptability, the book cites several examples and concepts to demonstrate aspects of managing change. It presents the end product of a successful security management system and examines the finer points of how it can be accomplished. Risk management and governance The book explores the security and business attributes that must be considered in the development of services and discusses the importance of consistency of management of services. In a section on risk management, the author explains how this important component is directly integrated with the ASMA model. He also discusses the critical element of governance and its importance to demonstrating value and ensuring effective adaptation. Lastly, the book examines how proper organizational management can give the executive and leadership team the necessary oversight to ensure the entire security program meets stated expectations. It also describes the capability maturity model, which ensures that all the co-dependent features of the
Full Product Details
Author: James S. Tiller
Publisher: Taylor & Francis Ltd
Imprint: CRC Press
Weight: 0.889kg
ISBN: 9780367452292
ISBN 10: 0367452294
Pages: 482
Publication Date: 26 November 2019
Audience:
Professional and scholarly
,
Professional & Vocational
Format: Paperback
Publisher's Status: Active
Availability: Manufactured on demand
We will order this item for you from a manufactured on demand supplier.
Reviews
... readers of the book, have a great chance to learn professional structures and program designs ... . This book can be recommended for researchers and university students in information security systems. Also, engineers, security system designers, and developers will find in it interesting and useful ... . --Nicholas Sklavos, in Greece IEEE, April 2011, Vol. 2, No. 2
... readers of the book, have a great chance to learn professional structures and program designs ... . This book can be recommended for researchers and university students in information security systems. Also, engineers, security system designers, and developers will find in it interesting and useful ... . --Nicholas Sklavos, in Greece IEEE, April 2011, Vol. 2, No. 2
Author Information
Presents IT security status using managerial measures of performance such as balanced scorecards Shows how the security of IT relates to risk business analysis Demonstrates how to align the practices of each facet of business so they work together using the same strategies Describes how the facets of a secure IT system are related to the security of suppliers and customers
