Part Of The New Jones & Bartlett Learning Information Systems Security & Assurance Series!

Managing Risk in Information Systems provides a unique, in-depth look at how to manage and reduce IT-associated risks. Written by an industry expert, this book provides a comprehensive explanation of the SSCP Risk, Response, and Recovery Domain in addition to providing a thorough overview of risk management and its implications on IT infrastructures and compliance. Using examples and exercises, this book incorporates hands-on activities to walk the reader through the fundamentals of risk management, strategies and approaches for mitigating risk, and the anatomy of how to create a plan that reduces risk.

Key Features

Introduces the fundamentals of risk and risk management

Illustrates how to identify and analyze threats and vulnerabilities as well as evaluate security controls to mitigate risk

Discusses how to translate a risk assessment into a risk management plan

Identifies how to perform a business impact analysis and the differences between business continuity plans and disaster recovery plans

About The Series

The Jones & Bartlett Learning: Information Systems Security & Assurance Series delivers fundamental IT security principles packed with real-world applications and examples for IT Security, Cybersecurity, Information Assurance, and Information Systems Security programs. Authored by Certified Information Systems Security Professionals (CISSPs), and reviewed by leading technical experts in the field, these books are current, forward-thinking resources that enable readers to solve the cybersecurity challenges of today and tomorrow.