Secure Your Business
Insights to Governance, Risk, Compliance & Information Security
Business & Finance
| Author: | ISBN: | 9783748160625 | |
| Publisher: | Books on Demand | Publication: | December 27, 2018 |
| Imprint: | Language: | English |
| Author: | |
| ISBN: | 9783748160625 |
| Publisher: | Books on Demand |
| Publication: | December 27, 2018 |
| Imprint: | |
| Language: | English |
A couple of strong trends like digitalization and cyber security issues are facing the daily life of all of us - this is true for our business and private life. Secure your business is more important than ever as cybercrime becomes more and more organized, and not only an individual hack like it was around the turn of the century. As a starting point the first article deals with information management and how to overcome the typical obstacles when introducing a company-wide solution. Based on the product called M-Files a strategical and tactical approach is presented to improve information governance beyond the regulatory requirements. Following with an article about effective policy writing in information security a good practice approach is outlined how mapping a control system to ISO27001 helps for governance and control set optimization purposes. Network segmentation is a complex program for the majority organizations. Based on a look at the treat landscape to mitigate related risks by network segmentation the relevant technologies and approached are presented focusing on the most important part: the conceptual solution to keep the business and security interest in a balance. How can security standards deliver value? Based on a short summary regarding the SANS20 and ISO27001 standards project good practices are demonstrated to tackle the data leakage risk. The following contributions to this book are about network device security, email spoofing risks mitigation by DMARC and how small and medium enterprises should establish a reasonable IT security risk management. The next article is dealing with the topic of holistically manage cybersecurity based on the market drivers and company-specific constraints, while the final article reports about a data center transition approach and how related risks can be effectively managed. The field of cybersecurity is huge and the trends are very dynamic. In this context we belief that the selected articles are providing relevant insights, in particular for the regulated industries. We wish our readers inspiring insights and new impulses by reading this book. Many thanks again to all colleagues and cooperators contributing to this Vineyard book.
A couple of strong trends like digitalization and cyber security issues are facing the daily life of all of us - this is true for our business and private life. Secure your business is more important than ever as cybercrime becomes more and more organized, and not only an individual hack like it was around the turn of the century. As a starting point the first article deals with information management and how to overcome the typical obstacles when introducing a company-wide solution. Based on the product called M-Files a strategical and tactical approach is presented to improve information governance beyond the regulatory requirements. Following with an article about effective policy writing in information security a good practice approach is outlined how mapping a control system to ISO27001 helps for governance and control set optimization purposes. Network segmentation is a complex program for the majority organizations. Based on a look at the treat landscape to mitigate related risks by network segmentation the relevant technologies and approached are presented focusing on the most important part: the conceptual solution to keep the business and security interest in a balance. How can security standards deliver value? Based on a short summary regarding the SANS20 and ISO27001 standards project good practices are demonstrated to tackle the data leakage risk. The following contributions to this book are about network device security, email spoofing risks mitigation by DMARC and how small and medium enterprises should establish a reasonable IT security risk management. The next article is dealing with the topic of holistically manage cybersecurity based on the market drivers and company-specific constraints, while the final article reports about a data center transition approach and how related risks can be effectively managed. The field of cybersecurity is huge and the trends are very dynamic. In this context we belief that the selected articles are providing relevant insights, in particular for the regulated industries. We wish our readers inspiring insights and new impulses by reading this book. Many thanks again to all colleagues and cooperators contributing to this Vineyard book.
