The Security Risk Assessment Handbook: A Complete Guide for Performing Security Risk Assessments

Douglas J. Landoll, Douglas Landoll

December 12, 2005 by CRC Press
Reference - 504 Pages - 33 B/W Illustrations
ISBN 9780849329982 - CAT# AU2998

This product is not available
FREE Standard Shipping!

Features

  • Provides detailed insight into precisely how to conduct an information security risk assessment from a practical point of view
  • Contains real examples, step-by-step descriptions, checklists, decision techniques and other tricks of the trade
  • Explores administrative, technical, and physical data gathering, including the RIIOT Method
  • Covers security risk analysis and mitigation, as well as security risk assessment reporting
  • Describes the steps of assessment project management, including planning, tracking, correcting, reporting, and wrap-up
  • Examines various risk assessment tools and methods, and compares quantitative vs. qualitative analysis
  • Summary

    The Security Risk Assessment Handbook: A Complete Guide for Performing Security Risk Assessments provides detailed insight into precisely how to conduct an information security risk assessment. Designed for security professionals and their customers who want a more in-depth understanding of the risk assessment process, this volume contains real-world advice that promotes professional development. It also enables security consumers to better negotiate the scope and rigor of a security assessment, effectively interface with a security assessment team, deliver insightful comments on a draft report, and have a greater understanding of final report recommendations.

    This book can save time and money by eliminating guesswork as to what assessment steps to perform, and how to perform them. In addition, the book offers charts, checklists, examples, and templates that speed up data gathering, analysis, and document development. By improving the efficiency of the assessment process, security consultants can deliver a higher-quality service with a larger profit margin.

    The text allows consumers to intelligently solicit and review proposals, positioning them to request affordable security risk assessments from quality vendors that meet the needs of their organizations.