Insider Computer Fraud

Insider Computer Fraud: An In-depth Framework for Detecting and Defending against Insider IT Attacks

Published:
December 6, 2007 by Auerbach Publications - 504 Pages
Author(s):
Kenneth Brancik, Information Security Consultant, New York, USA

» Recommend to Librarian
Free Standard Shipping

Purchasing Options

Hardback
$99.95
Add to cart
ISBN 9781420046595
Cat# AU4659
eBook
Purchase / Rent >
ISBN 9781420046601
Cat# AUE4659
 

Features

  • Establishes guidelines for determining when insider computer fraud is most likely to occur
  • Demonstrates how to configure your IT architecture to increase the level of protection against insider computer fraud
  • Presents key fraud indicators and key fraud metrics as tools for the detection and prevention of insider fraud

    • Summary

    An organization’s employees are often more intimate with its computer system than anyone else. Many also have access to sensitive information regarding the company and its customers. This makes employees prime candidates for sabotaging a system if they become disgruntled or for selling privileged information if they become greedy. Insider Computer Fraud: An In-depth Framework for Detecting and Defending against Insider IT Attacks presents the methods, safeguards, and techniques that help protect an organization from insider computer fraud.

    Drawing from the author’s vast experience assessing the adequacy of IT security for the banking and securities industries, the book presents a practical framework for identifying, measuring, monitoring, and controlling the risks associated with insider threats. It not only provides an analysis of application or system-related risks, it demonstrates the interrelationships that exist between an application and the IT infrastructure components it uses to transmit, process, and store sensitive data. The author also examines the symbiotic relationship between the risks, controls, threats, and action plans that should be deployed to enhance the overall information security governance processes.

    Increasing the awareness and understanding necessary to effectively manage the risks and controls associated with an insider threat, this book is an invaluable resource for those interested in attaining sound and best practices over the risk management process.

    Table of Contents

    Insider Computer Fraud 
    Related Research in Insider Computer Fraud and Information Security Controls 
    The Insider Threat Strategic Planning Process 
    Information Technology Architecture and Insider Computer Fraud Prevention 
    Protection of Web Sites from Insider Abuse and the Information Technology Infrastructure 
    Web Services Security and Control Considerations for Reducing Transaction Risks 
    Application Security and Methods for Reducing Insider Computer Fraud 
    Insider Computer Fraud Taxonomy and the Art of Key Fraud Indicator (KFI) Selection Process 
    Key Fraud Signature (KFS) Selection Process for Detecting Insider Computer Fraud 
    Application and System Journaling and the Software Engineering Process 
    The Role of Neural Networks in the Insider Computer Fraud Framework 
     
    Appendices: Application Access Controls. Application Data Origination/Input. Application Data Processing. Application Output/Management Information System (MIS). Key Fraud Signature (KFS) Worksheet. Cyber-Security HealthCheck 
    Acronym List. Glossary. 

    Related Titles

     
    About Us
    Resources
    Textbooks
    Other CRC Press Sites
    Featured Authors
    STAY CONNECTED
    Facebook Page for CRC Press Twitter Page for CRC Press You Tube Channel for CRC Press LinkedIn Page for CRC Press Google Plus Page for CRC Press
    Sign Up for Email Alerts
    © 2013 Taylor & Francis Group, LLC. All Rights Reserved. Privacy Policy | Cookie Use | Shipping Policy | Contact Us