chapter 1 Introduction to Strategic Information Security -- chapter 2 The Life Cycles of Security Managers -- chapter 3 Chief Security Officer or Chief Information Security Officer -- chapter 4 Information Security and Risk Management -- chapter 5 Establishing Information Ownership -- chapter 6 The Network as the Enterprise Database -- chapter 7 Risk Reduction Strategies -- chapter 8 Improving Security from the Bottom Up: Moving Toward a New Way of Enforcing Security Policy -- chapter 9 Authentication Models and Strategies -- chapter 10 Single Sign-On Security -- chapter 11 Crisis Management: A Strategic Viewpoint -- chapter 12 Business Continuity Planning -- chapter 13 Security Monitoring: Advanced Security Management -- chapter 14 Auditing and Testing a Strategic Control Process -- chapter 15 Outsourcing Security: Strategic Management Issues -- chapter 16 Final Thoughts on Strategic Security.