Enterprise architecture and information assurance : developing a secure foundation
by
 
Scholz, James A., author.

Title
Enterprise architecture and information assurance : developing a secure foundation

Author
Scholz, James A., author.

ISBN
9781439841600

Physical Description
1 online resource : text file, PDF

Contents
chapter 1. Setting the foundation -- chapter 2. Building the enterprise infrastructure -- chapter 3. Infrastructure security model components -- chapter 4. Systems security categorization -- chapter 5. Business impact analysis -- chapter 6. Risk -- chapter 7. Secure configuration management -- chapter 8. Contingency planning -- chapter 9. Cloud computing -- chapter 10. Continuous monitoring -- chapter 11. Physical security -- chapter 12. Building security -- chapter 13. Validating the enterprise.

Abstract
"Securing against operational interruptions and the theft of your data is much too important to leave to chance. By planning for the worst, you can ensure your organization is prepared for the unexpected. Enterprise Architecture and Information Assurance: Developing a Secure Foundation explains how to design complex, highly available, and secure enterprise architectures that integrate the most critical aspects of your organization's business processes.Filled with time-tested guidance, the book describes how to document and map the security policies and procedures needed to ensure cost-effective organizational and system security controls across your entire enterprise. It also demonstrates how to evaluate your network and business model to determine if they fit well together. The book's comprehensive coverage includes: Infrastructure security model components, Systems security categorization, Business impact analysis, Risk management and mitigation, Security configuration management, Contingency planning, Physical security, The certification and accreditation process, Facilitating the understanding you need to reduce and even mitigate security liabilities, the book provides sample rules of engagement, lists of NIST and FIPS references, and a sample certification statement. Coverage includes network and application vulnerability assessments, intrusion detection, penetration testing, incident response planning, risk mitigation audits/reviews, and business continuity and disaster recovery planning. Reading this book will give you the reasoning behind why security is foremost. By following the procedures it outlines, you will gain an understanding of your infrastructure and what requires further attention"-- Provided by publisher.

Subject Term
Database security.
 
Information storage and retrieval systems.
 
Management information systems.
 
Data protection.
 
System design.

Electronic Access
Distributed by publisher. Purchase or institutional license may be required for access.


LibraryMaterial TypeItem BarcodeShelf Number[[missing key: search.ChildField.HOLDING]]Status
Online LibraryE-Book289995-1001ONLINEElektronik Kütüphane