Languages: English (Original Language), English (Unknown), English (Published) Media: Hardcover Edition: 1 Number Of Items: 1 Pages: 344 Shipping Weight (lbs): 1.3 Dimensions (in): 9.5 x 6.4 x 1
Product Description Building and Implementing a Security Certification and Accreditation Program: Official (ISC)2 Guide to the CAP CBK demonstrates the practicality and effectiveness of certification and accreditation (C&A) as a risk management methodology for IT systems in both public and private organizations. It provides security professionals with an overview of C&A components, enabling them to document the status of the security controls of their IT systems, and learn how to secure systems via standard, repeatable processes.
This book consists of four main sections. It begins with a description of what it takes to build a certification and accreditation program at the organization level, followed by an analysis of various C&A processes and how they interrelate. The text then provides a case study of the successful implementation of certification and accreditation in a major U.S. government department. It concludes by offering a collection of helpful samples inthe appendices.
Customer Reviews:
Applying Information Security "best practices" January 23, 2006 1 out of 4 found this review helpful
Author Pat Howard delivers the goods on this one. He finds an effective middle ground between producing an overview/survey and getting bogged down in the nuances and details. If you are charged with implementing an information security program and getting your IT systems certified and accredited, this is a good place to start!
Powered by: Dknc, inc. and Amazon.com
For your safety and security, orders are processed through amazon.com
