Tipton / Krause Nozaki | Information Security Management Handbook | Buch | sack.de

Tipton / Krause Nozaki Information Security Management Handbook

Sixth Edition, Volume 6

6. New Auflage 2012, 504 Seiten, Gebunden, Format (B × H): 178 mm x 259 mm, Gewicht: 1154 g
ISBN: 978-1-4398-9313-5
Verlag: Taylor & Francis Inc

Tipton / Krause Nozaki Information Security Management Handbook

Updated annually, the Information Security Management Handbook, Sixth Edition, Volume 6 is the most comprehensive and up-to-date reference available on information security and assurance. Bringing together the knowledge, skills, techniques, and tools required of IT security professionals, it facilitates the up-to-date understanding required to stay one step ahead of evolving threats, standards, and regulations.

Reporting on the latest developments in information security and recent changes to the (ISC)2® CISSP Common Body of Knowledge (CBK®), this volume features new information on advanced persistent threats, HIPAA requirements, social networks, virtualization, and SOA. Its comprehensive coverage touches on all the key areas IT security professionals need to know, including:

Access Control: Technologies and administration including the requirements of current laws
Telecommunications and Network Security: Addressing the Internet, intranet, and extranet
Information Security and Risk Management: Organizational culture, preparing for a security audit, and the risks of social media
Application Security: Ever-present malware threats and building security into the development process
Security Architecture and Design: Principles of design including zones of trust
Cryptography: Elliptic curve cryptosystems, format-preserving encryption
Operations Security: Event analysis
Business Continuity and Disaster Recovery Planning: Business continuity in the cloud
Legal, Regulations, Compliance, and Investigation: Persistent threats and incident response in the virtual realm
Physical Security: Essential aspects of physical security

The ubiquitous nature of computers and networks will always provide the opportunity and means to do harm. This edition updates its popular predecessors with the information you need to address the vulnerabilities created by recent innovations such as cloud computing, mobile banking, digital wallets, and near-field communications. This handbook is also available on CD.


Information and communication technology management, staff and consultants; security management and staff; special libraries.

Weitere Infos & Material

Access Control
Access Control Techniques
Access Control Administration
Methods of Attack
Telecommunications & Network Security
Communications & Network Security
Internet, Intranet, Extranet Security
Network Attacks & Countermeasures
Information Security & Risk Management
Security Management Concepts & Principles
Policies, Standards, Procedures & Guidelines
Risk Management
Security Management Planning
Employment Policies & Practices
Application Security
Application Issues
System Development Controls
Malicious Code
Methods of Attack
Crypto Concepts, Methodologies & Practices
Security Architecture & Design
Principles of Computer & Network Organizations, Architectures & Designs
Operations Security
Operations Controls
Resource Protection Requirements
Business Continuity Planning & Disaster Recovery Planning
Business Continuity Planning
Disaster Recovery Planning
Legal, Regulations, Compliance & Investigation
Information Law
Major Categories of Computer Crime
Incident Handling
Physical Security

Tipton, Harold F.
About the Editors:

Sadly, Harold F. Tipton passed away on Friday, March 16, 2012. We’re grateful for his many years of friendship and guidance. Hal was instrumental in the creation and development of the information security publishing program at CRC Press.
Hal was an independent consultant and past president of the International Information System Security Certification Consortium (ISC)2. He was the director of Computer Security for Rockwell International Corporation for 15 years. He initiated the Rockwell computer and data security program in 1977 and then continued to administer, develop, enhance, and expand the program to accommodate the control needs produced by technological advances until his retirement from Rockwell in 1994. He was a member of the Information Systems Security Association (ISSA) since 1982, president of the Los Angeles Chapter in 1984, and president of the national organization of ISSA from 1987 to 1989. He was added to the ISSA Hall of Fame and the ISSA Honor Roll in 2000. He received the Computer Security Institute "Lifetime Achievement Award" in 1994 and the (ISC)2 "Hal Tipton Award" in 2001. He was a member of the National Institute for Standards and Technology (NIST) Computer and Telecommunications Security Council and the National Research Council Secure Systems Study Committee (for the National Academy of Science). He received a bachelor of science degree in engineering from the U.S. Naval Academy, a master’s degree in personnel administration from George Washington University, and a certificate in computer science from the University of California, Irvine. He published several papers on information security issues in the Information Security Management Handbook, Data Security Management, Information Systems Security, and the National Academy of Sciences report Computers at Risk.
He was a frequent speaker at all major information security conferences, including the Computer Security Institute, ISSA Annual Working Conference, Computer Security Workshop, MIS Conferences, AIS Security for Space Operations, DOE Computer Security Conference, National Computer Security Conference, IIA Security Conference, EDPAA, UCCEL Security and Audit Users Conference, and Industrial Security Awareness Conference. He conducted and participated in information security seminars for (ISC)2, Frost & Sullivan, UCI, CSULB, System Exchange Seminars, and the Institute for International Research.

Micki Krause Nozaki, CISSP, has held positions in the information security profession for the past 20 years. She was previously the chief information security officer at Pacific Life Insurance Company in Newport Beach, California, where she was accountable for directing their information protection and security program enterprisewide. Micki has held several leadership roles in industry-influential groups including the Information Systems Security Association (ISSA) and the International Information System Security Certification Consortium (ISC)2 and is a longterm advocate for professional security education and certification. In 2003, Krause received industry recognition as a recipient of the "Women of Vision" award given by the Information Security magazine. In 2002, Krause was honored as the second recipient of the Harold F. Tipton Award in recognition of her sustained career excellence and outstanding contributions to the profession. She is a reputed speaker, published author, and coeditor of the Information Security Management Handbook series.

Ihre Fragen, Wünsche oder Anmerkungen

Ihre Nachricht*
Wie möchten Sie kontaktiert werden?
Ihre E-Mail-Adresse*
Lediglich mit * gekennzeichnete Felder sind Pflichtfelder.
Wenn Sie die im Kontaktformular eingegebenen Daten durch Klick auf den nachfolgenden Button übersenden, erklären Sie sich damit einverstanden, dass wir Ihr Angaben für die Beantwortung Ihrer Anfrage verwenden. Selbstverständlich werden Ihre Daten vertraulich behandelt und nicht an Dritte weitergegeben. Sie können der Verwendung Ihrer Daten jederzeit widersprechen. Das Datenhandling bei Sack Fachmedien erklären wir Ihnen in unserer Datenschutzerklärung.