Product Description

This guidebook helps professionals to master the management of information security, concentrating on the proactive development and implementation of IT security for the enterprise.

Product Details

• Amazon Sales Rank: #398285 in Books
• Published on: 2004-03-31
• Original language: English
• Number of items: 1
• Binding: Hardcover
• 280 pages

About the Author
Steve Purser is the manager of ICSD Security Support & Administration for Clearstream Services, where he is responsible for all aspects of IT security. Formerly, he was head of IT security for Banque Generale du Luxembourg and an expert consultant in the areas of IT and Networking to the European Commission. He holds a Ph.D. in chemical physics from the University of East Anglia.

Customer Reviews

Excellent
Excellent. This book strikes exactly the right balance between providing real-life, pragmatic guidance in the management of information security, and at the same time provides sufficient technical and operational depth to the subject matter overall. The book is well structured and very clear, and provides a coherent approach to addressing strategic and tactical information security issues. Security technologies, policies, procedures and processes are clearly explained and practically demonstrated but the greatest benefit of this book is that it sets risk and security in the context of a functioning organisation - in this case a bank - and provides answers to the concerns of senior management, technical staff and business managers in a way that supports, not hinders, the organisation. Highly recommended reading.

Excellent!
I have been looking for a long time for a book on information security that discusses real life examples and gives realistic advice on how to cope with the flood of everyday problems that my department has to deal with. This book presents an interesting approach to security management and provides a lot of excellent tips on handling security issues by looking at things from a risk perspective. Definitely recommended.

A Very Good Book for Information Security Managers
If you are an Information Security manager and find yourself reactively managing Information Security, then this is the book for you.

Steve Purser has written this practical guide that describes how to move out of reactive mode and towards more proactive management of Information Security.

The book outlines a risk based approach to Information Security management, which is supported by underlying policies, procedures, standards, process improvement and a technical security architecture.

Using the fictitious "Secure Bank" as a basis, Steve takes the reader on a journey through the stages required to implement proactive security management. I particularly liked the use of the "Secure Bank" case study as this successfully juxtaposes theory with operational reality and shows the resultant compromises.

All in all this is a well-written, well-structured book which covers all the bases on how to pragmatically manage Information Security.

The book fills a gap in the current Information Security literature and is a welcome addition to my library.

I recommend it.