This eBook includes the following formats, accessible from your Account page after purchase:
EPUB The open industry format known for its reflowable content and usability on supported mobile devices.
MOBI The eBook format compatible with the Amazon Kindle and Amazon Kindle applications.
PDF The popular standard, used most often with the free Adobe® Reader® software.
This eBook requires no passwords or activation to read. We customize your eBook by discreetly watermarking it with your name, making it uniquely yours.
Also available in other formats.
Register your product to gain access to bonus material or receive a coupon.
William Stallings’ Effective Cybersecurity offers a comprehensive and unified explanation of the best practices and standards that represent proven, consensus techniques for implementing cybersecurity. Stallings draws on the immense work that has been collected in multiple key security documents, making this knowledge far more accessible than it has ever been before. Effective Cybersecurity is organized to align with the comprehensive Information Security Forum document The Standard of Good Practice for Information Security, but deepens, extends, and complements ISF’s work with extensive insights from the ISO 27002 Code of Practice for Information Security Controls, the NIST Framework for Improving Critical Infrastructure Cybersecurity, COBIT 5 for Information Security, and a wide spectrum of standards and guidelines documents from ISO, ITU-T, NIST, Internet RFCs, other official sources, and the professional, academic, and industry literature.
In a single expert source, current and aspiring cybersecurity practitioners will find comprehensive and usable practices for successfully implementing cybersecurity within any organization. Stallings covers:
Beyond requiring a basic understanding of cryptographic terminology and applications, this book is self-contained: all technology areas are explained without requiring other reference material. Each chapter contains a clear technical overview, as well as a detailed discussion of action items and appropriate policies. Stallings offers many pedagogical features designed to help readers master the material. These include: clear learning objectives, keyword lists, and glossaries to QR codes linking to relevant standards documents and web resources.
Chapter 1 Best Practices, Standards, and a Plan of Action
PART I: PLANNING FOR CYBERSECURITY
Chapter 2 Security Governance
Chapter 3 Information Risk Assessment
Chapter 4 Security Management
PART II: MANAGING THE CYBERSECURITY FUNCTION
Chapter 5 People Management
Chapter 6 Information Management
Chapter 7 Physical Asset Management
Chapter 8 System Development
Chapter 9 Business Application Management
Chapter 10 System Access
Chapter 11 System Management
Chapter 12 Networks and Communications
Chapter 13 Supply Chain Management
Chapter 14 Technical Security Management
Chapter 15 Threat and Incident Management
Chapter 16 Local Environment Management
Chapter 17 Business Continuity
PART III: SECURITY ASSESSMENT
Chapter 18 Security Monitoring and Improvement
Appendix A Answers to Review Questions
Appendix B References
Appendix C Glossary