{"product_id":"8436028692743","title":"Turin Concert","description":"\u003cp\u003e \u003cb\u003eEverything you need to know about information security programs and policies, in one book\u003c\/b\u003e \u003c\/p\u003e\u003cp\u003e \u003c\/p\u003e\u003cul\u003e \u003cli\u003eClearly explains all facets of InfoSec program and policy planning, development, deployment, and management\u003c\/li\u003e \u003cli\u003eThoroughly updated for today’s challenges, laws, regulations, and best practices\u003c\/li\u003e \u003cli\u003eThe perfect resource for anyone pursuing an information security management career\u003c\/li\u003e \u003c\/ul\u003e \u003cp\u003e\u003c\/p\u003e\u003cp\u003eIn today’s dangerous world, failures in information security can be catastrophic. Organizations \u003ci\u003emust\u003c\/i\u003e protect themselves. Protection begins with comprehensive, realistic policies. This up-to-date guide will help you create, deploy, and manage them.\u003c\/p\u003e\u003cp\u003eComplete and easy to understand, it explains key concepts and techniques through real-life examples. You’ll master modern information security regulations and frameworks, and learn specific best-practice policies for key industry sectors, including finance, healthcare, online commerce, and small business.\u003c\/p\u003e\u003cp\u003e\u003c\/p\u003e\u003cp\u003eIf you understand basic information security, you’re ready to succeed with this book. You’ll find projects, questions, exercises, examples, links to valuable easy-to-adapt information security policies...everything you need to implement a successful information security program.\u003c\/p\u003e\u003cp\u003e\u003c\/p\u003e\u003cp\u003e\u003cb\u003eSari Stern Greene,\u003c\/b\u003e CISSP, CRISC, CISM, NSA\/IAM, is an information security practitioner, author, and entrepreneur. She is passionate about the importance of protecting information and critical infrastructure. Sari founded Sage Data Security in 2002 and has amassed thousands of hours in the field working with a spectrum of technical, operational, and management personnel, as well as boards of directors, regulators, and service providers. Her first text was \u003ci\u003eTools and Techniques for Securing Microsoft Networks\u003c\/i\u003e, commissioned by Microsoft to train its partner channel, which was soon followed by the first edition of \u003ci\u003eSecurity Policies and Procedures: Principles and Practices\u003c\/i\u003e. She is actively involved in the security community, and speaks regularly at security conferences and workshops. She has been quoted in \u003ci\u003eThe New York Times\u003c\/i\u003e, \u003ci\u003eWall Street Journal\u003c\/i\u003e, and on CNN, and CNBC. Since 2010, Sari has served as the chair of the annual Cybercrime Symposium. \u003c\/p\u003e\u003cp\u003e\u003c\/p\u003e\u003cp\u003e\u003cb\u003eLearn how to\u003c\/b\u003e \u003c\/p\u003e\u003cp\u003e· Establish program objectives, elements, domains, and governance\u003c\/p\u003e\u003cp\u003e· Understand policies, standards, procedures, guidelines, and plans—and the differences among them\u003c\/p\u003e\u003cp\u003e· Write policies in “plain language,” with the right level of detail\u003c\/p\u003e\u003cp\u003e· Apply the Confidentiality, Integrity \u0026amp; Availability (CIA) security model\u003c\/p\u003e\u003cp\u003e· Use NIST resources and ISO\/IEC 27000-series standards\u003c\/p\u003e\u003cp\u003e· Align security with business strategy\u003c\/p\u003e\u003cp\u003e· Define, inventory, and classify your information and systems\u003c\/p\u003e\u003cp\u003e· Systematically identify, prioritize, and manage InfoSec risks\u003c\/p\u003e\u003cp\u003e· Reduce “people-related” risks with role-based Security Education, Awareness, and Training (SETA)\u003c\/p\u003e\u003cp\u003e· Implement effective physical, environmental, communications, and operational security\u003c\/p\u003e\u003cp\u003e· Effectively manage access control\u003c\/p\u003e\u003cp\u003e· Secure the entire system development lifecycle\u003c\/p\u003e\u003cp\u003e· Respond to incidents and ensure continuity of operations\u003c\/p\u003e\u003cp\u003e· Comply with laws and regulations, including GLBA, HIPAA\/HITECH, FISMA, state data security and notification rules, and PCI DSS\u003c\/p\u003e\u003cp\u003e\u003c\/p\u003e\u003cp\u003e\u003c\/p\u003e","brand":"Pumpkinheads","offers":[{"title":"Default Title","offer_id":47095675977968,"sku":"8436028692743","price":11.99,"currency_code":"USD","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0737\/7593\/9824\/files\/8436028692743_p0.jpg?v=1763611247","url":"https:\/\/shop-qa.barnesandnoble.com\/products\/8436028692743","provider":"Barnes \u0026 Noble (DEV)","version":"1.0","type":"link"}