Cover image for Responsive security : be ready to be secure
Title:
Responsive security : be ready to be secure
Personal Author:
Meng-Chow Kang author
Publication Information:
Boca Raton, FL. : CRC Press/Taylor & Francis, 2014
Physical Description:
xxi, 237 pages: illustrations; 23 cm
ISBN:
9781466584303
Abstract:
"Technology and business change along with information flows, vulnerabilities, exposures, and risks. Based on real-time practice experience, and research conducted by the author over the past decade, this book addresses the challenges, issues, and dilemmas of managing information security risk in a constantly changing business, technology, and operating environment. It introduces an approach, known as a Responsive Approach, for addressing these needs from both practitioner and organizational management perspectives"-- Provided by publisher
Subject Term:
Business enterprises -- Computer networks -- Security measures

Electronic data processing departments -- Security measures

Information technology -- Security measures

Data protection

Available:*

Library
Item Barcode
Call Number
Material Type
Item Category 1
Status
Searching...
 30000010343226 HF5548.37 K36 2014 Open Access Book Book
Searching...

On Order

Summary

Summary

Responsive Security: Be Ready to Be Secure explores the challenges, issues, and dilemmas of managing information security risk, and introduces an approach for addressing concerns from both a practitioner and organizational management standpoint. Utilizing a research study generated from nearly a decade of action research and real-time experience, this book introduces the issues and dilemmas that fueled the study, discusses its key findings, and provides practical methods for managing information security risks. It presents the principles and methods of the responsive security approach, developed from the findings of the study, and details the research that led to the development of the approach.

Demonstrates the viability and practicality of the approach in today's information security risk environment Demystifies information security risk management in practice, and reveals the limitations and inadequacies of current approaches Provides comprehensive coverage of the issues and challenges faced in managing information security risks today

The author reviews existing literature that synthesizes current knowledge, supports the need for, and highlights the significance of the responsive security approach. He also highlights the concepts, strategies, and programs commonly used to achieve information security in organizations.

Responsive Security: Be Ready to Be Secure examines the theories and knowledge in current literature, as well as the practices, related issues, and dilemmas experienced during the study. It discusses the reflexive analysis and interpretation involved in the final research cycles, and validates and refines the concepts, framework, and methodology of a responsive security approach for managing information security risk in a constantly changing risk environment.


Author Notes

Meng-Chow Kang, PhD, earned an MSc in information security from the Royal Holloway and Bedford New College, University of London, and completed his PhD program in information security risk management at the Southern Cross University in Australia. He co-founded the Regional Asia Information Security Exchange (RAISE) Forum (raiseforum.org) that serves as a platform for regional information sharing and contributes to international standards development in ISO and ITU-T. He has been contributing to the development and adoption of international standards relating to information security since 1998, served as the first chair for ISO/IEC JTC 1/SC 27/WG 4 on Security Controls and Services Standards development from 2006 to 2012, and his work has been recognized with numerous industry awards.


Table of Contents

Introduction
Knowledge, Issues and Dilemmas
Practice, Issues and Dilemmas
Responsive Security
Conclusion and Implications
Appendix A Action research cycles
Appendix B Dialectic Model of Systems Inquiry (DMSI)
Appendix C Framework for Information Risk Management