Information Security

In Wiley's Certified Information Security Manager (CISM) Study Guide, you'll get the information you need to succeed on the demanding CISM exam. You'll also develop the IT security skills and confidence you need to prove yourself where it really counts: on the job. Chapters are organized intuitively and by exam objective so you can easily keep track of what you've covered and what you still need to study. You'll also get access to a pre-assessment, so you can find out where you stand before you take your studies further.

"Information Security for CRO: Master Cyber Risk in Just 6 Hours!" is a crucial resource for Chief Risk Officers and senior leaders navigating the increasingly complex landscape of cybersecurity. Designed as an executive-level guide, it provides a fast-paced and efficient learning journey, condensing years of cybersecurity expertise into approximately six hours of focused study. This allows CROs to quickly grasp essential concepts and implement practical strategies for mitigating cyber risks, all while avoiding technical overload. The book equips readers with actionable insights and ...

Do you need a thorough but straightforward breakdown of the NIST Cybersecurity Framework v1.0? This TWO-BOOK BUNDLE gives a working explanation of the NIST CSF and a method of practical application. Equip yourself with a dual weapon against cyber threats – a theoretical understanding and actionable strategies. Whether you're a cybersecurity novice or a seasoned expert, this 2-in-1 bundle is a must-have resource.

As cyber attacks dominate front-page news, as hackers join the list of global threats, and as top generals warn of a coming cyber war, few books are more timely and enlightening than Dark Territory: The Secret History of Cyber War by Slate columnist and Pulitzer Prize-winning journalist Fred Kaplan.

The United States is being bombarded with cyber-attacks. From the surge in ransomware groups targeting critical infrastructure to nation states compromising the software supply chain and corporate email servers, malicious cyber activities have reached an all-time high. Russia attracts the most attention, but China is vastly more sophisticated. They have a common interest in exploiting the openness of the Internet and social media—and our democracy—to erode confidence in our institutions and to exacerbate our societal rifts to prevent us from mounting an effective response.

If keeping your business or your family safe from cybersecurity threats is on your to-do list, Cybersecurity for Dummies will introduce you to the basics of becoming cyber-secure! You'll learn what threats exist, and how to identify, protect against, detect, and respond to these threats, as well as how to recover if you have been breached!

"Information Security and Cybersecurity Frameworks 101", provides a comprehensive guide to understanding and implementing information security and cybersecurity frameworks. The book covers popular frameworks, such as ISO/IEC 27001, NIST Cybersecurity Framework, and Center for Internet Security (CIS) Critical Security Controls, and provides guidance on selecting and implementing the appropriate framework for an organization's specific needs and challenges. The book also includes case studies and lessons learned, as well as a section on emerging trends and technologies. With a focus on the ...

Welcome to the first and only book you will ever need on the topic of cyber law and cyber security. learn hacking techniques, cyber law, and white hat operations. Perfect for Beginners: If you’re brand new or an expert in cyber security, you’ll still find this guide a solid purchase to add to your skill set, develop new skills and techniques, or revamp old ones and sharpen yourself with cyber security and cyber law.

Before the internet became widely known as a global tool for terrorists, one perceptive US citizen recognized its ominous potential. Armed with clear evidence of computer espionage, he began a highly personal quest to expose a hidden network of spies that threatened national security. But would the authorities back him up? Cliff Stoll's dramatic firsthand account is "a computer-age detective story, instantly fascinating [and] astonishingly gripping" - Smithsonian.

The information security industry is undergoing a major change, forced by the rise of end-to-end encryption, encryption that cannot be intercepted, transport protocol stack evolution, "zero trust networks", and distributed computing. While we understand the logical connections between these trends, there is little analysis of all of these trends in combination. Examination of all five trends uncovers opportunities that not only improve the state of information security and the general posture, but also lead to resource reductions necessary for information security to be sustainable.

Our data is besieged daily in the information economy, leading to hidden AI harms. Companies can do this because our laws are built on outdated ideas that trap lawmakers, regulators, and courts into wrong assumptions, resulting in ineffective approaches to one of the most pressing concerns of our generation. Drawing on behavioral science, social data science, and economics, this book dispels enduring misconceptions about AI-driven interactions. Its exploration offers a view of why current regulations fail to protect us against digital harms, particularly those created by AI.

Security Awareness programs have gone from an afterthought to a critical component of Information Security programs. Most large organizations now have one or more full-time employees dedicated to awareness and managing human risks. This book defines a common framework for building a broad awareness program using the Train, Reinforce, Assess and Manage (TRAM) model. It includes specific advice and examples for activities across the TRAM functions. This book is filled with examples of deliverables an awareness professional can leverage in their program. This book also provides logical ...

"Mastering Information Security: A Comprehensive Guide to Implementing ISO 27000 Series" is a definitive exploration of the intricate realm of information security, authored by the seasoned expert Russell D. Nomer, CISSP. In an era where data breaches and cyber threats loom larger than ever, this book stands as a beacon of knowledge, guiding professionals, technology experts, and business leaders through the complexities of safeguarding digital assets. With over three decades of experience in the field, Russell D. Nomer, a Certified Information Systems Security Professional (CISSP), lends ...

(ISC)2 Certified Information Systems Security Professional (CISSP) Official Study Guide, 9th Edition has been completely updated based on the latest 2021 CISSP Exam Outline. This bestselling Sybex study guide covers 100% of the exam objectives. You'll prepare for the exam smarter and faster with Sybex thanks to expert content, knowledge from our real-world experience, advice on mastering this adaptive exam, access to the Sybex online interactive learning environment, and much more. Reinforce what you've learned with key topic exam essentials and chapter review questions.

Andrew J. Stewart convincingly shows that emergency software patches and new security products cannot provide the solution to threats such as computer hacking, viruses, software vulnerabilities, and electronic spying. Profound underlying structural problems must first be understood, confronted, and then addressed.

Elevate your organization's information security to new heights with "Mastering ISO 27001:2022 — A Comprehensive Guide to Information Security Management." This simplified guide is tailored for business leaders seeking success with ISO 27001, offering practical strategies to implement robust information security practices. Comprehensive Coverage: Delve into ISO 27001:2022 and gain a comprehensive understanding of information security management systems (ISMS). Explore key concepts from risk assessment to control implementation, ensuring thorough compliance with ISO standards. Cutting-Edge...

"Conquer the CISSP Exam: Your Guide to Success as a Certified Information Systems Security Professional" is your comprehensive resource for mastering the Certified Information Systems Security Professional (CISSP) exam. This guide offers a deep dive into each of the eight CISSP domains, providing clear explanations and practical insights to ensure you understand and can apply key concepts. Covering topics such as Security and Risk Management, Asset Security, Security Engineering, Communications and Network Security, Identity and Access Management, Security Assessment and Testing, Security ...

A straightforward look at the four domains of the ISACA Certified Information Security Manager exam. This book will help you get a firm grasp on the key topics needed for success with the exam. Included are over 120 practice questions covering the four domains of ISACA's CISM.

Unlock the secrets to mastering the NIST 800 risk management process in record time with this powerful 2-in-1 bundle! Introducing Information Systems Security NIST 800 2-in-1, featuring both RMF ISSO Foundation Guide and RMF ISSO: NIST 800-53. This comprehensive series is your ultimate roadmap to success, designed to simplify the complexities of NIST 800-53 security controls and show you the actionable steps required throughout the RMF process.

Edward Snowden, the man who risked everything to expose the US government’s system of mass surveillance, reveals for the first time the story of his life, including how he helped to build that system and what motivated him to try to bring it down.