Book description
This book supplies a blueprint on how to develop effective information security policies and procedures. It uses standards such as NIST 800-53, ISO 27001, and COBIT, and regulations such as HIPAA and PCI DSS as the foundation for the content. Highlighting key terminology, policy development concepts and methods, and suggested document structures, it includes examples, checklists, sample policies and procedures, guidelines, and a synopsis of the applicable standards. Readers will develop the understanding needed to write effective policies and procedures clearly and concisely.
Table of contents
- Cover
- Half Title
- Title Page
- Copyright Page
- Dedication
- Table of Contents
- PREFACE
- AUTHOR
- CHAPTER 1 INTRODUCTION
- CHAPTER 2 INFORMATION SECURITY POLICY BASICS
- CHAPTER 3 INFORMATION SECURITY POLICY FRAMEWORK
- CHAPTER 4 INFORMATION SECURITY POLICY DETAILS
- CHAPTER 5 INFORMATION SECURITY PROCEDURES AND STANDARDS
- CHAPTER 6 INFORMATION SECURITY POLICY PROJECTS
- APPENDIX A: EXAMPLE POLICIES (FISMA FRAMEWORK)
- APPENDIX B: EXAMPLE DEPARTMENTAL POLICY TAILORING GUIDE
- INDEX
Product information
- Title: Information Security Policies, Procedures, and Standards
- Author(s):
- Release date: March 2017
- Publisher(s): Auerbach Publications
- ISBN: 9781482245912
You might also like
book
Information Security Management Principles, 3rd Edition
In today’s technology-driven environment there is an ever-increasing demand for information delivery. A compromise has to …
book
Writing Information Security Policies
Administrators, more technically savvy than their managers, have started to secure the networks in a way …
book
Information Security Management Principles - Second edition
Commercial, personal and sensitive information is very hard to keep secure, and technological solutions are not …
book
Cyber Security Policy Guidebook
Drawing upon a wealth of experience from academia, industry, and government service, Cyber Security Policy Guidebook …