الصفحة 1
الصفحة 1
Information assurance : Security in the information environment
This updated edition of Information Assurance: Security in the Information Environment was written to help IT managers and assets protection professionals to assure the protection and availability of vital digital information and related information systems assets. This Second Edition of Information Assurance includes major updates, including three new chapters • The Role of Policy in Information Assurance • Incident Management and Response • Security Standards Bridging the gap between information security, information systems security and information warfare, this edition re-examines and explains why organisations need to take information assurance seriously, and discusses the business, legal, and technical knowledge needed to secure these vital government and business assets.
Fundamentals of information systems security ; 3rd ed.
Provides a comprehensive overview of the essential concepts readers must know as they pursue careers in information systems security. The text opens with a discussion of the new risks, threats, and vulnerabilities associated with the transition to a digital world. Part 2 presents a high level overview of the Security+ Exam and provides students with information as they move toward this certification. The book closes with information on information security standards, education, professional certifications, and compliance laws. With its practical, conversational writing style and step-by-step examples, this text is a must-have resource for those entering the world of information systems security.
Fundamentals of information systems security ; 4th ed.
Provides a comprehensive overview of the concepts readers must know as they pursue careers in information systems security. The text opens with a discussion of emerging technologies and the risks, threats, and vulnerabilities associated with our digital world. Part II takes a deeper dive into the foundational knowledge areas and functions associated with a career in information security. The book closes with a survey of information security standards, professional certifications, and compliance laws. With its practical, conversational writing style and step-by-step examples, this text is a must-have resource for those entering the world of information systems security.
IT Security Controls : A Guide to Corporate Standards and Frameworks
Gives an overview of the major standards and frameworks, and a proposed architecture to meet them. The book identifies and describes the necessary controls and processes that must be implemented in order to secure your organization's infrastructure. The book proposes a comprehensive approach to the implementation of IT security controls with an easily understandable graphic implementation proposal to comply with the most relevant market standards (ISO 27001, NIST, PCI-DSS, and COBIT) and a significant number of regulatory frameworks from central banks across the World (European Union, Switzerland, UK, Singapore, Hong Kong, India, Qatar, Kuwait, Saudi Arabia, Oman, etc.). You will learn: Understand corporate IT security controls, including governance, policies, procedures, and security awareness Know cybersecurity and risk assessment techniques such as penetration testing, red teaming, compliance scans, firewall assurance, and vulnerability scans Understand technical IT security controls for unmanaged and managed devices, and perimeter controls Implement security testing tools such as steganography, vulnerability scanners, session hijacking, intrusion detection, and more
Acquiring card payments
Covers: Payment cards and protocols / EMV contact chip and contactless transactions / Disputes, arbitration, and compliance / Data security standards in the payment card industry / Validation algorithms / Code tables / Basic cryptography / Pin block formats and algorithms
