{"product_id":"9781944480424","title":"Enterprise Security Risk Management: Concepts and Applications","description":"\u003cp\u003eAs a security professional, have you found that you and others in your company do not always define “security” the same way? Perhaps security interests and business interests have become misaligned. Brian Allen and Rachelle Loyear offer a new approach: Enterprise Security Risk Management (ESRM). By viewing security through a risk management lens, ESRM can help make you and your security program successful. \u003c\/p\u003e \u003cp\u003eIn their long-awaited book, based on years of practical experience and research, Brian Allen and Rachelle Loyear show you step-by-step how \u003ci\u003eEnterprise Security Risk Management\u003c\/i\u003e (ESRM) applies fundamental risk principles to manage all security risks. Whether the risks are informational, cyber, physical security, asset management, or business continuity, all are included in the holistic, all-encompassing ESRM approach which will move you from task-based to risk-based security.\u003c\/p\u003e \u003cul\u003e\n\u003cli\u003e\n\u003ci\u003eHow is ESRM familiar? \u003c\/i\u003eAs a security professional, you may already practice some of the components of ESRM. Many of the concepts – such as risk identification, risk transfer and acceptance, crisis management, and incident response – will be well known to you. \u003c\/li\u003e\n\u003cli\u003e\n\u003ci\u003eHow is ESRM new? \u003c\/i\u003eWhile many of the principles are familiar, the authors have identified few organizations that apply them in the comprehensive, holistic way that ESRM represents – and even fewer that communicate these principles effectively to key decision-makers. \u003c\/li\u003e\n\u003cli\u003e\n\u003ci\u003eHow is ESRM practical? \u003c\/i\u003eESRM offers you a straightforward, realistic, actionable approach to deal effectively with \u003ci\u003eall\u003c\/i\u003e the distinct types of security risks facing you as a security practitioner. ESRM is performed in a \u003ci\u003elife cycle of risk management\u003c\/i\u003e including: \u003cul\u003e\n\u003cli\u003eAsset assessment and prioritization. \u003c\/li\u003e\n\u003cli\u003eRisk assessment and prioritization. \u003c\/li\u003e\n\u003cli\u003eRisk treatment (mitigation). \u003c\/li\u003e\n\u003cli\u003eContinuous improvement. \u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e \u003cp\u003eThroughout \u003ci\u003eEnterprise Security Risk Management: Concepts and Applications,\u003c\/i\u003e the authors give you the tools and materials that will help you advance you in the security field, no matter if you are a student, a newcomer, or a seasoned professional. Included are realistic case studies, questions to help you assess your own security program, thought-provoking discussion questions, useful figures and tables, and references for your further reading.\u003c\/p\u003e \u003cp\u003eBy redefining how everyone thinks about the role of security in the enterprise, your security organization can focus on working in partnership with business leaders and other key stakeholders to identify and mitigate security risks. As you begin to use ESRM, following the instructions in this book, you will experience greater personal and professional satisfaction as a security professional – and you’ll become a recognized and trusted partner in the business-critical effort of protecting your enterprise and all its assets.\u003c\/p\u003e","brand":"Rothstein Publishing","offers":[{"title":"Default Title","offer_id":47152272146672,"sku":"9781944480424","price":84.99,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0737\/7593\/9824\/files\/9781944480424_p0.jpg?v=1763793038","url":"https:\/\/shop-qa.barnesandnoble.com\/products\/9781944480424","provider":"Barnes \u0026 Noble (DEV)","version":"1.0","type":"link"}