| | Location: Home » Network Security » Information Security Policies and Procedures: A Practitioner's Reference, Second Edition | |
|
|
Information Security Policies and Procedures: A Practitioner's Reference, Second Edition |  | Author: Thomas R. Peltier
Publisher: Auerbach Publications
Category: Book
List Price: $99.95
Buy New: $69.00
as of 9/9/2010 04:46 CDT details
You Save: $30.95 (31%)
New (12) Used (15) from $43.00
Seller: DanFL
Rating:  6 reviews
Sales Rank: 128224
Media: Hardcover
Edition: 2
Pages: 448
Number Of Items: 1
Shipping Weight (lbs): 1.5
Dimensions (in): 9.2 x 6.4 x 1.1
ISBN: 0849319587
Dewey Decimal Number: 005.8
EAN: 9780849319587
ASIN: 0849319587
Publication Date: May 20, 2004
Availability: Usually ships in 1-2 business days
| |
| Also Available In:
|
| Similar Items:
| |
| Editorial Reviews:
Product Description
This book illustrates how to develop the related standards, procedures, and guidelines for implementing policy. Each chapter provides advice on the structural mechanics of the various documents as well as an example of each form. This new edition updates material on the concept of responsibilities that reflects the general nature of the individuals responsible. Standards and procedures are also updated to reflect the work done in the field during 2002 with additional examples. ISO 17799 is used to identify possible standards that enterprises can create. This includes better explanations of what to use and when to use it.
|
| Customer Reviews:
Showing reviews 1-5 of 6
 Practical Policy Reference May 19, 2005
Anthony Lai Cheuk Tung (Hong Kong SAR)
6 out of 6 found this review helpful
This is a useful book for me to reference, especially when I deal with challenges in security policy framework review. The most impressive pages include the tier 1-2-3 framework, proper wordings in policy, policy sample studies and analysis, complete checklist and questionnaire.
After reading this book or on-and-off reference, I always remember four major elements in a policy:
1. Topic
2. Scope
3. Responsibility
4. Compliance
In addition, I have shared this book with an IT supervisor, he always go for this book for the team reference. I do feel happy to recommend it. Moreover, it readily happens to me I could apply the hints and tips from this book to the revised policy. Meanwhile, compared with the company's policy, it is undoubted organized and logical.
Be honest, in reality, many people still always mix up policy, standard and procedures as well as guidelines and produce a "Spaghetti-like" document to deal with auditor and compliance once a year only, you could say, many companies treat it as a last-minute homework.
A true practitioner's reference August 5, 2004
Donald E. Hester (OAKLEY, CA United States)
6 out of 8 found this review helpful
This is one of the best books available for information systems security polices. The book covers tier 1 and tier 2 policies. This book looks at policies as a business enabler where policies support management's organizational goals. Great samples!
Good reading for all software engineers August 3, 2008
Nagaraja Doddappa
It explains how why and how to integrate security policies and procedures across all tiers of software engineering organization. I had limited understanding f and this book helped me to get deep in to details and understand at an organization level.
I recommend this for all engineers and managers in sofware organization.
Great book! November 25, 2004
Eric Kent (USA)
2 out of 4 found this review helpful
If you are doing infosec policy dev., this book is aweseome!
It saved me 10 hours this week alone.
 Spend Your Money Elsewhere April 12, 2002
10 out of 11 found this review helpful
While this is a good reference, it's value does not match its price. The entire book in not included on the CD and the book does not include a "complete" set of policies. It is certainly enough to get you started, but not enough to complete the task.If you are considering buying a used copy from an amazon marketplace seller as I did, be careful. The pages did not fit the binder and the CD was missing its setup file. I had to return it. If you need assistance with security policies and procedures, take a look at Thomas Peltier's other book, Information Security Policies, Procedures and Standards: Guidelines for Effective Information Security Management. It contains almost all of the same material, at a much more reasonable price.
Showing reviews 1-5 of 6
|
|
|
| |
|
