1 option
Information security policies, procedures, and standards : a practitioner's reference / Douglas J. Landoll.
- Format:
- Book
- Author/Creator:
- Landoll, Douglas J., author.
- Language:
- English
- Subjects (All):
- Business--Data processing--Security measures.
- Business.
- Data protection.
- Computer security.
- Physical Description:
- 1 online resource (246 pages) : illustrations
- Edition:
- 1st edition
- Place of Publication:
- Boca Raton : CRC Press, Taylor & Francis Group, [2016]
- Language Note:
- English
- System Details:
- text file
- Summary:
- Information Security Policies, Procedures, and Standards: A Practitioner's Reference gives you a blueprint on how to develop effective information security policies and procedures. It uses standards such as NIST 800-53, ISO 27001, and COBIT, and regulations such as HIPAA and PCI DSS as the foundation for the content. Highlighting key terminology, policy development concepts and methods, and suggested document structures, it includes examples, checklists, sample policies and procedures, guidelines, and a synopsis of the applicable standards. The author explains how and why procedures are developed and implemented rather than simply provide information and examples. This is an important distinction because no two organizations are exactly alike; therefore, no two sets of policies and procedures are going to be exactly alike. This approach provides the foundation and understanding you need to write effective policies, procedures, and standards clearly and concisely. Developing policies and procedures may seem to be an overwhelming task. However, by relying on the material presented in this book, adopting the policy development techniques, and examining the examples, the task will not seem so daunting. You can use the discussion material to help sell the concepts, which may be the most difficult aspect of the process. Once you have completed a policy or two, you will have the courage to take on even more tasks. Additionally, the skills you acquire will assist you in other areas of your professional and private life, such as expressing an idea clearly and concisely or creating a project plan.
- Contents:
- Introduction
- Information security policy basics
- Information security policy framework
- Information security policy details
- Information security procedures and standards
- Information security policy projects.
- Notes:
- An Auerbach book--title page.
- Includes bibliographical references at the end of each chapters.
- Description based on print version record.
- ISBN:
- 9781315372785
- 1315372789
- 9781482245912
- 1482245914
- OCLC:
- 1000428108
The Penn Libraries is committed to describing library materials using current, accurate, and responsible language. If you discover outdated or inaccurate language, please fill out this feedback form to report it and suggest alternative language.