{"product_id":"securing-e-business-systems-isbn-9780471072980","title":"Securing E-Business Systems","description":"The essential guide to e-business security for managers and IT professionals\u003cbr\u003e Securing E-Business Systems provides business managers and executives with an overview of the components of an effective e-business infrastructure, the areas of greatest risk, and best practices safeguards. It outlines a security strategy that allows the identification of new vulnerabilities, assists in rapid safeguard deployment, and provides for continuous safeguard evaluation and modification. The book thoroughly outlines a proactive and evolving security strategy and provides a methodology for ensuring that applications are designed with security in mind. It discusses emerging liabilities issues and includes security best practices, guidelines, and sample policies. This is the bible of e-business security.\u003cbr\u003e Timothy Braithwaite (Columbus, MD) is Deputy Director of Information Assurance Programs for Titan Corporation. He has managed data centers, software projects, systems planning, and budgeting organizations, and has extensive experience in project and acquisition management. He is also the author of Y2K Lessons Learned (Wiley: 0-471-37308-7).Dieser praktische Leitfaden gibt einen aktuellen Überblick über die Komponenten einer effektiven E-Business Infrastruktur, über Bereiche mit dem größten Sicherheitsrisiko und Best Practices im Bereich von Sicherheitsvorkehrungen.\u003cbr\u003e \u003cbr\u003e Er erläutert eine proaktive und sich weiterentwickelnde Sicherheitsstrategie, die es ermöglicht, neue Sicherheitslücken zu erkennen, rasch wirksame Sicherheitsmaßnahmen umzusetzen und ständige Sicherheitsprüfungen und -anpassungen vorzunehmen.\u003cbr\u003e \u003cbr\u003e \"Securing E-Business Systems\" vermittelt eine Methode , die gewährleistet, dass alle Anwendungen auf der Basis ausgeklügelter Sicherheitsmaßstäbe entwickelt werden.\u003cbr\u003e \u003cbr\u003e Diskutiert darüber hinaus immer häufiger auftretende Haftungsfragen.\u003cbr\u003e \u003cbr\u003e \"Securing E-Business Systems\" ist der ultimative Leitfaden für mehr Sicherheit im E-Business für Manager und Führungskräfte.\u003cbr\u003e \u003cbr\u003e Mit einer Fülle von Best Practices, anwendungsbereiten Formularen und Beispielen effektiver Sicherheitsrichtlinien.  Preface.\u003cbr\u003e \u003cbr\u003e Chapter 1 Electronic Business Systems Security.\u003cbr\u003e \u003cbr\u003e Introduction.\u003cbr\u003e \u003cbr\u003e How Is E-Business Security Defined?\u003cbr\u003e \u003cbr\u003e Can E-Business Security Be Explained More Simply?\u003cbr\u003e \u003cbr\u003e Is E-Business Security Really Such a Big Deal?\u003cbr\u003e \u003cbr\u003e Is E-Business Security More Important Than Other Information Technology Initiatives?\u003cbr\u003e \u003cbr\u003e How Does an Organization Get Started?\u003cbr\u003e \u003cbr\u003e Instead of Playing \"Catch-Up,\" What Should an Organization Be Doing to Design E-Business Systems That Are Secure in the First Place?\u003cbr\u003e \u003cbr\u003e Chapter 2 E-Business Systems and Infrastructure Support Issues.\u003cbr\u003e \u003cbr\u003e Introduction.\u003cbr\u003e \u003cbr\u003e E-Business Defined.\u003cbr\u003e \u003cbr\u003e A Short History of E-Business Innovations.\u003cbr\u003e \u003cbr\u003e The Need for Secure E-Business Systems.\u003cbr\u003e \u003cbr\u003e Software: The Vulnerable Underbelly of Computing.\u003cbr\u003e \u003cbr\u003e The Interoperability Challenge and E-Business Success.\u003cbr\u003e \u003cbr\u003e E-Business Security: An Exercise in Trade-Offs.\u003cbr\u003e \u003cbr\u003e Few Systems Are Designed to Be Secure.\u003cbr\u003e \u003cbr\u003e Conclusion.\u003cbr\u003e \u003cbr\u003e Chapter 3 Security Weaknesses in E-Business Infrastructure and \"Best Practices\" Security.\u003cbr\u003e \u003cbr\u003e Introduction.\u003cbr\u003e \u003cbr\u003e Fundamental Technical Security Threats.\u003cbr\u003e \u003cbr\u003e The Guiding Principles of Protection.\u003cbr\u003e \u003cbr\u003e \"Best Practice\" Prevention, Detection, and Countermeasures and Recovery Techniques.\u003cbr\u003e \u003cbr\u003e x Chapter 4 Managing E-Business Systems and Security.\u003cbr\u003e \u003cbr\u003e Introduction.\u003cbr\u003e \u003cbr\u003e Part One: Misconceptions and Questionable Assumptions.\u003cbr\u003e \u003cbr\u003e Part Two: Managing E-Business Systems as a Corporate Asset.\u003cbr\u003e \u003cbr\u003e Part Three: E-Business Security Program Management.\u003cbr\u003e \u003cbr\u003e Chapter 5 A \"Just-in-Time\" Strategy for Securing the E-Business System: The Role for Security Monitoring and Incident Response.\u003cbr\u003e \u003cbr\u003e The Current State of E-Business Security.\u003cbr\u003e \u003cbr\u003e Standard Requirements of an E-Business Security Strategy.\u003cbr\u003e \u003cbr\u003e A New Security Strategy.\u003cbr\u003e \u003cbr\u003e The Crucial Role of Security Monitoring and Incident Response to the Securing of E-Business Systems.\u003cbr\u003e \u003cbr\u003e The Current State of Intrusion Detection Systems (IDS).\u003cbr\u003e \u003cbr\u003e Defining a Cost-Effective Security Monitoring and Incident Response Capability.\u003cbr\u003e \u003cbr\u003e Alternatives to Building \"Your Own\" Security Monitoring and Incident Response Capability.\u003cbr\u003e \u003cbr\u003e Summary.\u003cbr\u003e \u003cbr\u003e Chapter 6 Designing and Delivering Secured E-Business Application Systems.\u003cbr\u003e \u003cbr\u003e Introduction.\u003cbr\u003e \u003cbr\u003e Past Development Realities.\u003cbr\u003e \u003cbr\u003e Contemporary Development Realities.\u003cbr\u003e \u003cbr\u003e Developing Secured E-Business Systems.\u003cbr\u003e \u003cbr\u003e Using the SDR Framework.\u003cbr\u003e \u003cbr\u003e Choosing a Systems Development Methodology That Is Compatible with the SDR Framework.\u003cbr\u003e \u003cbr\u003e Participants in the Identification of Security and Integrity Controls.\u003cbr\u003e \u003cbr\u003e Importance of Automated Tools.\u003cbr\u003e \u003cbr\u003e A Cautionary Word About New Technologies.\u003cbr\u003e \u003cbr\u003e Summary and Conclusions.\u003cbr\u003e \u003cbr\u003e Chapter 7 Justifying E-Business Security and the Security Management Program.\u003cbr\u003e \u003cbr\u003e Introduction.\u003cbr\u003e \u003cbr\u003e The \"Quantifiable\" Argument.\u003cbr\u003e \u003cbr\u003e Emerging \"Nonquantifiable\" Arguments.\u003cbr\u003e \u003cbr\u003e Benefits Justifications Must Cover Security Program Administration.\u003cbr\u003e \u003cbr\u003e Conclusion.\u003cbr\u003e \u003cbr\u003e Chapter 8 Computers, Software, Security, and Issues of Liability.\u003cbr\u003e \u003cbr\u003e Evolving Theories of Responsibility.\u003cbr\u003e \u003cbr\u003e Likely Scenarios.\u003cbr\u003e \u003cbr\u003e How Might a Liability Case Unfold?\u003cbr\u003e \u003cbr\u003e Questions to Be Asked to Ensure That Reasonable Care Has Been Taken in Developing a Secure E-Business System.\u003cbr\u003e \u003cbr\u003e Chapter 9 The National Critical Infrastructure Protection (CIP) Initiative.\u003cbr\u003e \u003cbr\u003e The Problem of Dependency.\u003cbr\u003e \u003cbr\u003e Critical Infrastructure Protection (CIP) Purpose, Directives, Organizations, and Relationships.\u003cbr\u003e \u003cbr\u003e Frequently Asked Questions About the IT-ISAC.\u003cbr\u003e \u003cbr\u003e Critical Information Infrastructure Protection Issues that Need Resolution.\u003cbr\u003e \u003cbr\u003e Appendix A: Y2K Lessons Learned and Their Importance for E-Business Security.\u003cbr\u003e \u003cbr\u003e Appendix B: Systems Development Review Framework for E-Business Development Projects.\u003cbr\u003e \u003cbr\u003e Appendix C: A Corporate Plan of Action for Securing E-Business Systems (Sample).\u003cbr\u003e \u003cbr\u003e Appendix D: E-Business Risk Management Review Model Instructions for Use.\u003cbr\u003e \u003cbr\u003e Appendix E: Resources Guide.\u003cbr\u003e \u003cbr\u003e Index.  \"...to be recommended as a as an IT security handbook...\" (Information Age, August 2002)  \u003cp\u003e\"...covers the full gamut of security threats...\" (Infoconomy, 5 September 2002)\u003c\/p\u003e \u003cp\u003e“…a timely and valuable introduction to the fourth generation of cellular networks…(Infoconomy, 1 August 2002)\u003c\/p\u003e TIMOTHY BRAITHWAITE has spent more than fifteen years in senior security management positions and another twenty years in executive director positions for computer and communications services organizations in both the public and private sectors. He has also worked as a private consultant. Tim has previously published The Power of IT: Maximizing Your Technology Investments and Evaluating the Year 2000 Project: A Management Guide for Determining Reasonable Care (Wiley).  Securing E-Business Systems takes a pragmatic approach to a highly complex and ever-changing subject-the security of e-business networks and IT systems. With new threats, new dangers, and new capabilities arising virtually daily, keeping systems secure can be a challenge. This book proposes a new approach to e-business security, an approach founded on good management and built-in adaptability.\u003cbr\u003e \u003cbr\u003e A successful e-business must be capable of managing the myriad risks associated with its growing dependency on information and communications technology by ensuring the continued integrity of its information, processes, and supporting IT infrastructure. Securing E-Business Systems presents a model for a proactive program of security administration that remains constantly alert for new vulnerabilities and capable of rapidly employing safeguards.\u003cbr\u003e \u003cbr\u003e Timothy Braithwaite presents persuasive reasons why all e-businesses should control and manage IT security just as strictly and as thoughtfully as they would any other component of the company. He also offers methods and ideas that will help managers establish and sustain security management processes and procedures that will outlive the crisis of the moment and adapt to the changing security needs of an e-business over time.\u003cbr\u003e \u003cbr\u003e For managers and executives concerned with the security of their e-business, Securing E-Business Systems offers unparalleled guidance, practical plans, and expert information on all the major issues, including:\u003cbr\u003e * Components of an e-business infrastructure and the corresponding areas of greatest risk\u003cbr\u003e * Oversight review models to ensure that e-business applications are designed, programmed, integrated, tested, and implemented with risk and security in mind\u003cbr\u003e * Tips on justifying the expenditures required to establish and administer a program of effective and efficient e-business security controls\u003cbr\u003e * Emerging liability issues that may arise from lack of security\u003cbr\u003e * Best practices, sample guidelines, and ready-to-use forms and checklists  \"This is a must-read for the entire CXO community if businesses are to survive in cyberspace. Attack methodologies and the cyber threat poised against our business systems are advancing rapidly. Business leaders are soon to face downstream liability issues for the damage their unprotected and exploited systems cause not only to themselves but to all of those with whom they do business in cyberspace. American businesses are now the target of choice by our nation's enemies. We may secure the airways, ports, and borders, but only the boardrooms of America can ensure the survival of our economy.\" -John R. Thomas, Colonel, U.S. Army, Retired, Former Commander of the DoD, Global Operations and Security Center\u003cbr\u003e \u003cbr\u003e Today's e-business depends on the security of its networks and information technology infrastructure to safeguard its customers and its profits. But with rapid innovation and the emergence of new threats and new countermeasures, keeping up with security is becoming more complex than ever. Securing E-Business Systems offers a new model for developing a proactive program of security administration that works as a continuous process of identifying weaknesses and implementing solutions. This book offers a real, working design for managing an IT security program with the attention it truly warrants, treating security as a constant function that adapts to meet a company's changing security needs.\u003cbr\u003e \u003cbr\u003e Topics include:\u003cbr\u003e * Security weaknesses\u003cbr\u003e * Safeguarding technologies\u003cbr\u003e * Countermeasure best practices\u003cbr\u003e * Establishing an adaptable e-business security management program\u003cbr\u003e * Essential elements of a corporate security management program\u003cbr\u003e * Functions, structure, staffing, and contracting considerations in security management\u003cbr\u003e * Implementing intrusion detection technology\u003cbr\u003e * Designing tomorrow's e-business application for secured operations\u003cbr\u003e * Contemporary rationales for justifying increased spending on security programs\u003cbr\u003e * Emerging liability issues for e-businesses","brand":"Wiley","offers":[{"title":"Default Title","offer_id":47989998026981,"sku":"NP9780471072980","price":45.0,"currency_code":"USD","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/1842\/7735\/files\/9780471072980.jpg?v=1761786157","url":"https:\/\/k12savings.com\/products\/securing-e-business-systems-isbn-9780471072980","provider":"K12savings","version":"1.0","type":"link"}