Author: Richard Seiersen
Publisher: John Wiley & Sons
ISBN: 111951536X
Category : Computers
Languages : en
Pages : 326
Book Description
Security professionals are trained skeptics. They poke and prod at other people’s digital creations, expecting them to fail in unexpected ways. Shouldn’t that same skeptical power be turned inward? Shouldn’t practitioners ask: “How do I know that my enterprise security capabilities work? Are they scaling, accelerating, or slowing as the business exposes more value to more people and through more channels at higher velocities?” This is the start of the modern measurement mindset—the mindset that seeks to confront security with data. The Metrics Manifesto: Confronting Security with Data delivers an examination of security metrics with R, the popular open-source programming language and software development environment for statistical computing. This insightful and up-to-date guide offers readers a practical focus on applied measurement that can prove or disprove the efficacy of information security measures taken by a firm. The book’s detailed chapters combine topics like security, predictive analytics, and R programming to present an authoritative and innovative approach to security metrics. The author and security professional examines historical and modern methods of measurement with a particular emphasis on Bayesian Data Analysis to shed light on measuring security operations. Readers will learn how processing data with R can help measure security improvements and changes as well as help technology security teams identify and fix gaps in security. The book also includes downloadable code for people who are new to the R programming language. Perfect for security engineers, risk engineers, IT security managers, CISOs, and data scientists comfortable with a bit of code, The Metrics Manifesto offers readers an invaluable collection of information to help professionals prove the efficacy of security measures within their company.
The Metrics Manifesto
Author: Richard Seiersen
Publisher: John Wiley & Sons
ISBN: 111951536X
Category : Computers
Languages : en
Pages : 326
Book Description
Security professionals are trained skeptics. They poke and prod at other people’s digital creations, expecting them to fail in unexpected ways. Shouldn’t that same skeptical power be turned inward? Shouldn’t practitioners ask: “How do I know that my enterprise security capabilities work? Are they scaling, accelerating, or slowing as the business exposes more value to more people and through more channels at higher velocities?” This is the start of the modern measurement mindset—the mindset that seeks to confront security with data. The Metrics Manifesto: Confronting Security with Data delivers an examination of security metrics with R, the popular open-source programming language and software development environment for statistical computing. This insightful and up-to-date guide offers readers a practical focus on applied measurement that can prove or disprove the efficacy of information security measures taken by a firm. The book’s detailed chapters combine topics like security, predictive analytics, and R programming to present an authoritative and innovative approach to security metrics. The author and security professional examines historical and modern methods of measurement with a particular emphasis on Bayesian Data Analysis to shed light on measuring security operations. Readers will learn how processing data with R can help measure security improvements and changes as well as help technology security teams identify and fix gaps in security. The book also includes downloadable code for people who are new to the R programming language. Perfect for security engineers, risk engineers, IT security managers, CISOs, and data scientists comfortable with a bit of code, The Metrics Manifesto offers readers an invaluable collection of information to help professionals prove the efficacy of security measures within their company.
Publisher: John Wiley & Sons
ISBN: 111951536X
Category : Computers
Languages : en
Pages : 326
Book Description
Security professionals are trained skeptics. They poke and prod at other people’s digital creations, expecting them to fail in unexpected ways. Shouldn’t that same skeptical power be turned inward? Shouldn’t practitioners ask: “How do I know that my enterprise security capabilities work? Are they scaling, accelerating, or slowing as the business exposes more value to more people and through more channels at higher velocities?” This is the start of the modern measurement mindset—the mindset that seeks to confront security with data. The Metrics Manifesto: Confronting Security with Data delivers an examination of security metrics with R, the popular open-source programming language and software development environment for statistical computing. This insightful and up-to-date guide offers readers a practical focus on applied measurement that can prove or disprove the efficacy of information security measures taken by a firm. The book’s detailed chapters combine topics like security, predictive analytics, and R programming to present an authoritative and innovative approach to security metrics. The author and security professional examines historical and modern methods of measurement with a particular emphasis on Bayesian Data Analysis to shed light on measuring security operations. Readers will learn how processing data with R can help measure security improvements and changes as well as help technology security teams identify and fix gaps in security. The book also includes downloadable code for people who are new to the R programming language. Perfect for security engineers, risk engineers, IT security managers, CISOs, and data scientists comfortable with a bit of code, The Metrics Manifesto offers readers an invaluable collection of information to help professionals prove the efficacy of security measures within their company.
Security Metrics
Author: Andrew Jaquith
Publisher: Pearson Education
ISBN: 0132715775
Category : Computers
Languages : en
Pages : 356
Book Description
The Definitive Guide to Quantifying, Classifying, and Measuring Enterprise IT Security Operations Security Metrics is the first comprehensive best-practice guide to defining, creating, and utilizing security metrics in the enterprise. Using sample charts, graphics, case studies, and war stories, Yankee Group Security Expert Andrew Jaquith demonstrates exactly how to establish effective metrics based on your organization’s unique requirements. You’ll discover how to quantify hard-to-measure security activities, compile and analyze all relevant data, identify strengths and weaknesses, set cost-effective priorities for improvement, and craft compelling messages for senior management. Security Metrics successfully bridges management’s quantitative viewpoint with the nuts-and-bolts approach typically taken by security professionals. It brings together expert solutions drawn from Jaquith’s extensive consulting work in the software, aerospace, and financial services industries, including new metrics presented nowhere else. You’ll learn how to: • Replace nonstop crisis response with a systematic approach to security improvement • Understand the differences between “good” and “bad” metrics • Measure coverage and control, vulnerability management, password quality, patch latency, benchmark scoring, and business-adjusted risk • Quantify the effectiveness of security acquisition, implementation, and other program activities • Organize, aggregate, and analyze your data to bring out key insights • Use visualization to understand and communicate security issues more clearly • Capture valuable data from firewalls and antivirus logs, third-party auditor reports, and other resources • Implement balanced scorecards that present compact, holistic views of organizational security effectiveness
Publisher: Pearson Education
ISBN: 0132715775
Category : Computers
Languages : en
Pages : 356
Book Description
The Definitive Guide to Quantifying, Classifying, and Measuring Enterprise IT Security Operations Security Metrics is the first comprehensive best-practice guide to defining, creating, and utilizing security metrics in the enterprise. Using sample charts, graphics, case studies, and war stories, Yankee Group Security Expert Andrew Jaquith demonstrates exactly how to establish effective metrics based on your organization’s unique requirements. You’ll discover how to quantify hard-to-measure security activities, compile and analyze all relevant data, identify strengths and weaknesses, set cost-effective priorities for improvement, and craft compelling messages for senior management. Security Metrics successfully bridges management’s quantitative viewpoint with the nuts-and-bolts approach typically taken by security professionals. It brings together expert solutions drawn from Jaquith’s extensive consulting work in the software, aerospace, and financial services industries, including new metrics presented nowhere else. You’ll learn how to: • Replace nonstop crisis response with a systematic approach to security improvement • Understand the differences between “good” and “bad” metrics • Measure coverage and control, vulnerability management, password quality, patch latency, benchmark scoring, and business-adjusted risk • Quantify the effectiveness of security acquisition, implementation, and other program activities • Organize, aggregate, and analyze your data to bring out key insights • Use visualization to understand and communicate security issues more clearly • Capture valuable data from firewalls and antivirus logs, third-party auditor reports, and other resources • Implement balanced scorecards that present compact, holistic views of organizational security effectiveness
How to Measure Anything in Cybersecurity Risk
Author: Douglas W. Hubbard
Publisher: John Wiley & Sons
ISBN: 1119085292
Category : Business & Economics
Languages : en
Pages : 304
Book Description
A ground shaking exposé on the failure of popular cyber risk management methods How to Measure Anything in Cybersecurity Risk exposes the shortcomings of current "risk management" practices, and offers a series of improvement techniques that help you fill the holes and ramp up security. In his bestselling book How to Measure Anything, author Douglas W. Hubbard opened the business world's eyes to the critical need for better measurement. This book expands upon that premise and draws from The Failure of Risk Management to sound the alarm in the cybersecurity realm. Some of the field's premier risk management approaches actually create more risk than they mitigate, and questionable methods have been duplicated across industries and embedded in the products accepted as gospel. This book sheds light on these blatant risks, and provides alternate techniques that can help improve your current situation. You'll also learn which approaches are too risky to save, and are actually more damaging than a total lack of any security. Dangerous risk management methods abound; there is no industry more critically in need of solutions than cybersecurity. This book provides solutions where they exist, and advises when to change tracks entirely. Discover the shortcomings of cybersecurity's "best practices" Learn which risk management approaches actually create risk Improve your current practices with practical alterations Learn which methods are beyond saving, and worse than doing nothing Insightful and enlightening, this book will inspire a closer examination of your company's own risk management practices in the context of cybersecurity. The end goal is airtight data protection, so finding cracks in the vault is a positive thing—as long as you get there before the bad guys do. How to Measure Anything in Cybersecurity Risk is your guide to more robust protection through better quantitative processes, approaches, and techniques.
Publisher: John Wiley & Sons
ISBN: 1119085292
Category : Business & Economics
Languages : en
Pages : 304
Book Description
A ground shaking exposé on the failure of popular cyber risk management methods How to Measure Anything in Cybersecurity Risk exposes the shortcomings of current "risk management" practices, and offers a series of improvement techniques that help you fill the holes and ramp up security. In his bestselling book How to Measure Anything, author Douglas W. Hubbard opened the business world's eyes to the critical need for better measurement. This book expands upon that premise and draws from The Failure of Risk Management to sound the alarm in the cybersecurity realm. Some of the field's premier risk management approaches actually create more risk than they mitigate, and questionable methods have been duplicated across industries and embedded in the products accepted as gospel. This book sheds light on these blatant risks, and provides alternate techniques that can help improve your current situation. You'll also learn which approaches are too risky to save, and are actually more damaging than a total lack of any security. Dangerous risk management methods abound; there is no industry more critically in need of solutions than cybersecurity. This book provides solutions where they exist, and advises when to change tracks entirely. Discover the shortcomings of cybersecurity's "best practices" Learn which risk management approaches actually create risk Improve your current practices with practical alterations Learn which methods are beyond saving, and worse than doing nothing Insightful and enlightening, this book will inspire a closer examination of your company's own risk management practices in the context of cybersecurity. The end goal is airtight data protection, so finding cracks in the vault is a positive thing—as long as you get there before the bad guys do. How to Measure Anything in Cybersecurity Risk is your guide to more robust protection through better quantitative processes, approaches, and techniques.
Measuring and Managing Information Risk
Author: Jack Freund
Publisher: Butterworth-Heinemann
ISBN: 0127999329
Category : Computers
Languages : en
Pages : 411
Book Description
Using the factor analysis of information risk (FAIR) methodology developed over ten years and adopted by corporations worldwide, Measuring and Managing Information Risk provides a proven and credible framework for understanding, measuring, and analyzing information risk of any size or complexity. Intended for organizations that need to either build a risk management program from the ground up or strengthen an existing one, this book provides a unique and fresh perspective on how to do a basic quantitative risk analysis. Covering such key areas as risk theory, risk calculation, scenario modeling, and communicating risk within the organization, Measuring and Managing Information Risk helps managers make better business decisions by understanding their organizational risk. - Uses factor analysis of information risk (FAIR) as a methodology for measuring and managing risk in any organization. - Carefully balances theory with practical applicability and relevant stories of successful implementation. - Includes examples from a wide variety of businesses and situations presented in an accessible writing style.
Publisher: Butterworth-Heinemann
ISBN: 0127999329
Category : Computers
Languages : en
Pages : 411
Book Description
Using the factor analysis of information risk (FAIR) methodology developed over ten years and adopted by corporations worldwide, Measuring and Managing Information Risk provides a proven and credible framework for understanding, measuring, and analyzing information risk of any size or complexity. Intended for organizations that need to either build a risk management program from the ground up or strengthen an existing one, this book provides a unique and fresh perspective on how to do a basic quantitative risk analysis. Covering such key areas as risk theory, risk calculation, scenario modeling, and communicating risk within the organization, Measuring and Managing Information Risk helps managers make better business decisions by understanding their organizational risk. - Uses factor analysis of information risk (FAIR) as a methodology for measuring and managing risk in any organization. - Carefully balances theory with practical applicability and relevant stories of successful implementation. - Includes examples from a wide variety of businesses and situations presented in an accessible writing style.
The Tyranny of Metrics
Author: Jerry Z. Muller
Publisher: Princeton University Press
ISBN: 0691191263
Category : Business & Economics
Languages : en
Pages : 245
Book Description
How the obsession with quantifying human performance threatens business, medicine, education, government—and the quality of our lives Today, organizations of all kinds are ruled by the belief that the path to success is quantifying human performance, publicizing the results, and dividing up the rewards based on the numbers. But in our zeal to instill the evaluation process with scientific rigor, we've gone from measuring performance to fixating on measuring itself—and this tyranny of metrics now threatens the quality of our organizations and lives. In this brief, accessible, and powerful book, Jerry Muller uncovers the damage metrics are causing and shows how we can begin to fix the problem. Filled with examples from business, medicine, education, government, and other fields, the book explains why paying for measured performance doesn't work, why surgical scorecards may increase deaths, and much more. But Muller also shows that, when used as a complement to judgment based on personal experience, metrics can be beneficial, and he includes an invaluable checklist of when and how to use them. The result is an essential corrective to a harmful trend that increasingly affects us all.
Publisher: Princeton University Press
ISBN: 0691191263
Category : Business & Economics
Languages : en
Pages : 245
Book Description
How the obsession with quantifying human performance threatens business, medicine, education, government—and the quality of our lives Today, organizations of all kinds are ruled by the belief that the path to success is quantifying human performance, publicizing the results, and dividing up the rewards based on the numbers. But in our zeal to instill the evaluation process with scientific rigor, we've gone from measuring performance to fixating on measuring itself—and this tyranny of metrics now threatens the quality of our organizations and lives. In this brief, accessible, and powerful book, Jerry Muller uncovers the damage metrics are causing and shows how we can begin to fix the problem. Filled with examples from business, medicine, education, government, and other fields, the book explains why paying for measured performance doesn't work, why surgical scorecards may increase deaths, and much more. But Muller also shows that, when used as a complement to judgment based on personal experience, metrics can be beneficial, and he includes an invaluable checklist of when and how to use them. The result is an essential corrective to a harmful trend that increasingly affects us all.
The History Manifesto
Author: Jo Guldi
Publisher: Cambridge University Press
ISBN: 1316165256
Category : Political Science
Languages : en
Pages : 177
Book Description
How should historians speak truth to power – and why does it matter? Why is five hundred years better than five months or five years as a planning horizon? And why is history – especially long-term history – so essential to understanding the multiple pasts which gave rise to our conflicted present? The History Manifesto is a call to arms to historians and everyone interested in the role of history in contemporary society. Leading historians Jo Guldi and David Armitage identify a recent shift back to longer-term narratives, following many decades of increasing specialisation, which they argue is vital for the future of historical scholarship and how it is communicated. This provocative and thoughtful book makes an important intervention in the debate about the role of history and the humanities in a digital age. It will provoke discussion among policymakers, activists and entrepreneurs as well as ordinary listeners, viewers, readers, students and teachers. This title is also available as Open Access.
Publisher: Cambridge University Press
ISBN: 1316165256
Category : Political Science
Languages : en
Pages : 177
Book Description
How should historians speak truth to power – and why does it matter? Why is five hundred years better than five months or five years as a planning horizon? And why is history – especially long-term history – so essential to understanding the multiple pasts which gave rise to our conflicted present? The History Manifesto is a call to arms to historians and everyone interested in the role of history in contemporary society. Leading historians Jo Guldi and David Armitage identify a recent shift back to longer-term narratives, following many decades of increasing specialisation, which they argue is vital for the future of historical scholarship and how it is communicated. This provocative and thoughtful book makes an important intervention in the debate about the role of history and the humanities in a digital age. It will provoke discussion among policymakers, activists and entrepreneurs as well as ordinary listeners, viewers, readers, students and teachers. This title is also available as Open Access.
Talent Force
Author: Hank Stringer
Publisher: Pearson Education
ISBN: 0132704056
Category : Business & Economics
Languages : en
Pages : 201
Book Description
Only one thing really differentiates your business from your competitor: your people. Do you have the right talent in the right place at the right time? It's no longer enough to have a 'workforce': you need a high-impact Talent Force. The authors first identify the massive social, cultural, and economic shifts that are transforming hiring as we know it. We are a smaller, closer, and more competitive world, as Baby Boomers are retiring in the US, India is flourishing due to outsourcing and educational development, and China is a strong new economic force. Add to that the fact that today's best people have radically new expectations and approaches to work; this book reveals what they want and how to meet those needs while building your business. Learn how to develop and implement a worldclass talent plan that aligns with business objectives, and define metrics to track and optimize success. Discover how candidates are using technology to evaluate new opportunities, benchmark compensation, and create new back-channels of communication about worklife. Maximize these new technologies to grow Talent Force, tap into new sources of competitive intelligence and stay ahead of the pack. Foreword xi Acknowledgments xiii About the Authors xv Preface xvii Introduction xix Chapter 1: The Quality Talent Imperative 1 Chapter 2: Talent Market Demands 11 Chapter 3: Building a Competitive Talent Organization 35 Chapter 4: The Cultural Obsession of Work 59 Chapter 5: Building a Talent Community 77 Chapter 6: Tangible Talent Measurement 93 Chapter 7: Talent Goes on Offense 115 Chapter 8: Relationship Recruiting (Still) Rules 133 Chapter 9: Talent Forces of Tomorrow 151 Index 163
Publisher: Pearson Education
ISBN: 0132704056
Category : Business & Economics
Languages : en
Pages : 201
Book Description
Only one thing really differentiates your business from your competitor: your people. Do you have the right talent in the right place at the right time? It's no longer enough to have a 'workforce': you need a high-impact Talent Force. The authors first identify the massive social, cultural, and economic shifts that are transforming hiring as we know it. We are a smaller, closer, and more competitive world, as Baby Boomers are retiring in the US, India is flourishing due to outsourcing and educational development, and China is a strong new economic force. Add to that the fact that today's best people have radically new expectations and approaches to work; this book reveals what they want and how to meet those needs while building your business. Learn how to develop and implement a worldclass talent plan that aligns with business objectives, and define metrics to track and optimize success. Discover how candidates are using technology to evaluate new opportunities, benchmark compensation, and create new back-channels of communication about worklife. Maximize these new technologies to grow Talent Force, tap into new sources of competitive intelligence and stay ahead of the pack. Foreword xi Acknowledgments xiii About the Authors xv Preface xvii Introduction xix Chapter 1: The Quality Talent Imperative 1 Chapter 2: Talent Market Demands 11 Chapter 3: Building a Competitive Talent Organization 35 Chapter 4: The Cultural Obsession of Work 59 Chapter 5: Building a Talent Community 77 Chapter 6: Tangible Talent Measurement 93 Chapter 7: Talent Goes on Offense 115 Chapter 8: Relationship Recruiting (Still) Rules 133 Chapter 9: Talent Forces of Tomorrow 151 Index 163
Manifesto for a Moral Revolution
Author: Jacqueline Novogratz
Publisher: Henry Holt and Company
ISBN: 1250222869
Category : Business & Economics
Languages : en
Pages : 256
Book Description
"An instant classic." —Arianna Huffington "Will inspire people from across the political spectrum." —Jonathan Haidt Longlisted for the Porchlight Business Book of the Year Award, an essential shortlist of leadership ideas for everyone who wants to do good in this world, from Jacqueline Novogratz, author of the New York Times bestseller The Blue Sweater and founder and CEO of Acumen. In 2001, when Jacqueline Novogratz founded Acumen, a global community of socially and environmentally responsible partners dedicated to changing the way the world tackles poverty, few had heard of impact investing—Acumen’s practice of “doing well by doing good.” Nineteen years later, there’s been a seismic shift in how corporate boards and other stakeholders evaluate businesses: impact investment is not only morally defensible but now also economically advantageous, even necessary. Still, it isn’t easy to reach a success that includes profits as well as mutually favorable relationships with workers and the communities in which they live. So how can today’s leaders, who often kick off their enterprises with high hopes and short timetables, navigate the challenges of poverty and war, of egos and impatience, which have stymied generations of investors who came before? Drawing on inspiring stories from change-makers around the world and on memories of her own most difficult experiences, Jacqueline divulges the most common leadership mistakes and the mind-sets needed to rise above them. The culmination of thirty years of work developing sustainable solutions for the problems of the poor, Manifesto for a Moral Revolution offers the perspectives necessary for all those—whether ascending the corporate ladder or bringing solar light to rural villages—who seek to leave this world better off than they found it.
Publisher: Henry Holt and Company
ISBN: 1250222869
Category : Business & Economics
Languages : en
Pages : 256
Book Description
"An instant classic." —Arianna Huffington "Will inspire people from across the political spectrum." —Jonathan Haidt Longlisted for the Porchlight Business Book of the Year Award, an essential shortlist of leadership ideas for everyone who wants to do good in this world, from Jacqueline Novogratz, author of the New York Times bestseller The Blue Sweater and founder and CEO of Acumen. In 2001, when Jacqueline Novogratz founded Acumen, a global community of socially and environmentally responsible partners dedicated to changing the way the world tackles poverty, few had heard of impact investing—Acumen’s practice of “doing well by doing good.” Nineteen years later, there’s been a seismic shift in how corporate boards and other stakeholders evaluate businesses: impact investment is not only morally defensible but now also economically advantageous, even necessary. Still, it isn’t easy to reach a success that includes profits as well as mutually favorable relationships with workers and the communities in which they live. So how can today’s leaders, who often kick off their enterprises with high hopes and short timetables, navigate the challenges of poverty and war, of egos and impatience, which have stymied generations of investors who came before? Drawing on inspiring stories from change-makers around the world and on memories of her own most difficult experiences, Jacqueline divulges the most common leadership mistakes and the mind-sets needed to rise above them. The culmination of thirty years of work developing sustainable solutions for the problems of the poor, Manifesto for a Moral Revolution offers the perspectives necessary for all those—whether ascending the corporate ladder or bringing solar light to rural villages—who seek to leave this world better off than they found it.
Security Metrics, A Beginner's Guide
Author: Caroline Wong
Publisher: McGraw Hill Professional
ISBN: 0071744010
Category : Computers
Languages : en
Pages : 433
Book Description
Security Smarts for the Self-Guided IT Professional “An extraordinarily thorough and sophisticated explanation of why you need to measure the effectiveness of your security program and how to do it. A must-have for any quality security program!”—Dave Cullinane, CISSP, CISO & VP, Global Fraud, Risk & Security, eBay Learn how to communicate the value of an information security program, enable investment planning and decision making, and drive necessary change to improve the security of your organization. Security Metrics: A Beginner's Guide explains, step by step, how to develop and implement a successful security metrics program. This practical resource covers project management, communication, analytics tools, identifying targets, defining objectives, obtaining stakeholder buy-in, metrics automation, data quality, and resourcing. You'll also get details on cloud-based security metrics and process improvement. Templates, checklists, and examples give you the hands-on help you need to get started right away. Security Metrics: A Beginner's Guide features: Lingo--Common security terms defined so that you're in the know on the job IMHO--Frank and relevant opinions based on the author's years of industry experience Budget Note--Tips for getting security technologies and processes into your organization's budget In Actual Practice--Exceptions to the rules of security explained in real-world contexts Your Plan--Customizable checklists you can use on the job now Into Action--Tips on how, why, and when to apply new skills and techniques at work Caroline Wong, CISSP, was formerly the Chief of Staff for the Global Information Security Team at eBay, where she built the security metrics program from the ground up. She has been a featured speaker at RSA, ITWeb Summit, Metricon, the Executive Women's Forum, ISC2, and the Information Security Forum.
Publisher: McGraw Hill Professional
ISBN: 0071744010
Category : Computers
Languages : en
Pages : 433
Book Description
Security Smarts for the Self-Guided IT Professional “An extraordinarily thorough and sophisticated explanation of why you need to measure the effectiveness of your security program and how to do it. A must-have for any quality security program!”—Dave Cullinane, CISSP, CISO & VP, Global Fraud, Risk & Security, eBay Learn how to communicate the value of an information security program, enable investment planning and decision making, and drive necessary change to improve the security of your organization. Security Metrics: A Beginner's Guide explains, step by step, how to develop and implement a successful security metrics program. This practical resource covers project management, communication, analytics tools, identifying targets, defining objectives, obtaining stakeholder buy-in, metrics automation, data quality, and resourcing. You'll also get details on cloud-based security metrics and process improvement. Templates, checklists, and examples give you the hands-on help you need to get started right away. Security Metrics: A Beginner's Guide features: Lingo--Common security terms defined so that you're in the know on the job IMHO--Frank and relevant opinions based on the author's years of industry experience Budget Note--Tips for getting security technologies and processes into your organization's budget In Actual Practice--Exceptions to the rules of security explained in real-world contexts Your Plan--Customizable checklists you can use on the job now Into Action--Tips on how, why, and when to apply new skills and techniques at work Caroline Wong, CISSP, was formerly the Chief of Staff for the Global Information Security Team at eBay, where she built the security metrics program from the ground up. She has been a featured speaker at RSA, ITWeb Summit, Metricon, the Executive Women's Forum, ISC2, and the Information Security Forum.
The CISO Evolution
Author: Matthew K. Sharp
Publisher: John Wiley & Sons
ISBN: 1119782481
Category : Computers
Languages : en
Pages : 423
Book Description
Learn to effectively deliver business aligned cybersecurity outcomes In The CISO Evolution: Business Knowledge for Cybersecurity Executives, information security experts Matthew K. Sharp and Kyriakos “Rock” Lambros deliver an insightful and practical resource to help cybersecurity professionals develop the skills they need to effectively communicate with senior management and boards. They assert business aligned cybersecurity is crucial and demonstrate how business acumen is being put into action to deliver meaningful business outcomes. The authors use illustrative stories to show professionals how to establish an executive presence and avoid the most common pitfalls experienced by technology experts when speaking and presenting to executives. The book will show you how to: Inspire trust in senior business leaders by properly aligning and setting expectations around risk appetite and capital allocation Properly characterize the indispensable role of cybersecurity in your company’s overall strategic plan Acquire the necessary funding and resources for your company’s cybersecurity program and avoid the stress and anxiety that comes with underfunding Perfect for security and risk professionals, IT auditors, and risk managers looking for effective strategies to communicate cybersecurity concepts and ideas to business professionals without a background in technology. The CISO Evolution is also a must-read resource for business executives, managers, and leaders hoping to improve the quality of dialogue with their cybersecurity leaders.
Publisher: John Wiley & Sons
ISBN: 1119782481
Category : Computers
Languages : en
Pages : 423
Book Description
Learn to effectively deliver business aligned cybersecurity outcomes In The CISO Evolution: Business Knowledge for Cybersecurity Executives, information security experts Matthew K. Sharp and Kyriakos “Rock” Lambros deliver an insightful and practical resource to help cybersecurity professionals develop the skills they need to effectively communicate with senior management and boards. They assert business aligned cybersecurity is crucial and demonstrate how business acumen is being put into action to deliver meaningful business outcomes. The authors use illustrative stories to show professionals how to establish an executive presence and avoid the most common pitfalls experienced by technology experts when speaking and presenting to executives. The book will show you how to: Inspire trust in senior business leaders by properly aligning and setting expectations around risk appetite and capital allocation Properly characterize the indispensable role of cybersecurity in your company’s overall strategic plan Acquire the necessary funding and resources for your company’s cybersecurity program and avoid the stress and anxiety that comes with underfunding Perfect for security and risk professionals, IT auditors, and risk managers looking for effective strategies to communicate cybersecurity concepts and ideas to business professionals without a background in technology. The CISO Evolution is also a must-read resource for business executives, managers, and leaders hoping to improve the quality of dialogue with their cybersecurity leaders.