Security-Management Issues
暂无分享,去创建一个
This chapter discusses what is required to put together an effective security function in an organization. Security managers must cope daily with the possibility that electronic information could be lost, corrupted, diverted, or misused. These types of issues represent a real threat to an organization's business performance. Management of a security function requires planning and a deep understanding of the concept of risk management. The interface among the CSO, HR, and legal counsel cannot be emphasized enough. Their partnership is key to successful implementation of a site security plan. The basic precepts of security, such as incident response, forensics, training and awareness, perimeter security measures, intrusion detection, and secure remote access, are discussed in terms of establishing functions devoted to those functional areas. Policy development and the role such policies play in an organization's risk management and site security plans are also covered in the chapter.
[1] Barbara Fraser,et al. Site Security Handbook , 1997, RFC.
[2] Charles P. Pfleeger,et al. Security in computing , 1988 .
[3] Martin Kratz,et al. Control and Security of Computer Information Systems , 1988 .