Ciso Compass: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers
暫譯: CISO 指南：從先驅者的洞見中導航網絡安全領導挑戰

Name: Ciso Compass: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers
Price: 2214 TWD
Availability: OnlineOnly
Author: Fitzgerald, Todd
ISBN: 0367486024

Fitzgerald, Todd

出版商: Auerbach Publication
出版日期: 2020-02-25
售價: $2,330
貴賓價: 9.5 折 $2,214
語言: 英文
頁數: 526
裝訂: Quality Paper - also called trade paper
ISBN: 0367486024
ISBN-13: 9780367486020
相關分類: 資訊安全
其他版本: CISO COMPASS: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers

海外代購書籍(需單獨結帳)

前往其他有現貨版本↗️

商品描述

Todd Fitzgerald, co-author of the ground-breaking (ISC)² CISO Leadership: Essential Principles for Success, Information Security Governance Simplified: From the Boardroom to the Keyboard, co-author for the E-C Council CISO Body of Knowledge, and contributor to many others including Official (ISC)² Guide to the CISSP CBK, COBIT 5 for Information Security, and ISACA CSX Cybersecurity Fundamental Certification, is back with this new book incorporating practical experience in leading, building, and sustaining an information security/cybersecurity program.

CISO COMPASS includes personal, pragmatic perspectives and lessons learned of over 75 award-winning CISOs, security leaders, professional association leaders, and cybersecurity standard setters who have fought the tough battle. Todd has also, for the first time, adapted the McKinsey 7S framework (strategy, structure, systems, shared values, staff, skills and style) for organizational effectiveness to the practice of leading cybersecurity to structure the content to ensure comprehensive coverage by the CISO and security leaders to key issues impacting the delivery of the cybersecurity strategy and demonstrate to the Board of Directors due diligence. The insights will assist the security leader to create programs appreciated and supported by the organization, capable of industry/ peer award-winning recognition, enhance cybersecurity maturity, gain confidence by senior management, and avoid pitfalls.

The book is a comprehensive, soup-to-nuts book enabling security leaders to effectively protect information assets and build award-winning programs by covering topics such as developing cybersecurity strategy, emerging trends and technologies, cybersecurity organization structure and reporting models, leveraging current incidents, security control frameworks, risk management, laws and regulations, data protection and privacy, meaningful policies and procedures, multi-generational workforce team dynamics, soft skills, and communicating with the Board of Directors and executive management. The book is valuable to current and future security leaders as a valuable resource and an integral part of any college program for information/ cybersecurity.

商品描述(中文翻譯)

Todd Fitzgerald，開創性著作《(ISC)² CISO Leadership: Essential Principles for Success》、《Information Security Governance Simplified: From the Boardroom to the Keyboard》的共同作者，E-C Council CISO 知識體系的共同作者，以及《Official (ISC)² Guide to the CISSP CBK》、《COBIT 5 for Information Security》和 ISACA CSX Cybersecurity Fundamental Certification 等多部作品的貢獻者，帶著這本新書回來，該書結合了在領導、建立和維持資訊安全/網路安全計畫方面的實務經驗。

《CISO COMPASS》包含了超過75位獲獎的CISO、安全領導者、專業協會領導者和網路安全標準制定者的個人、務實的觀點和經驗教訓，他們在艱難的戰鬥中奮鬥。Todd 也首次將麥肯錫的7S框架（策略、結構、系統、共享價值、員工、技能和風格）調整為組織效能的實踐，以引導網路安全，結構化內容以確保CISO和安全領導者對影響網路安全策略執行的關鍵問題進行全面覆蓋，並向董事會展示盡職調查。這些見解將幫助安全領導者創建受到組織讚賞和支持的計畫，能夠獲得行業/同儕的獎項認可，提升網路安全成熟度，獲得高層管理的信任，並避免陷阱。

這本書是一部全面的、從頭到尾的著作，使安全領導者能夠有效保護資訊資產並建立獲獎計畫，涵蓋的主題包括發展網路安全策略、新興趨勢和技術、網路安全組織結構和報告模型、利用當前事件、安全控制框架、風險管理、法律和法規、數據保護和隱私、有意義的政策和程序、多代勞動力團隊動態、軟技能，以及與董事會和高層管理溝通。這本書對於當前和未來的安全領導者來說，是一個寶貴的資源，也是任何資訊/網路安全大學課程的重要組成部分。

作者簡介

Todd Fitzgerald, CISSP, CISA, CISM, CIPM, CIPP/US, CIPP/E, CIPP/C, CGEIT, CRISC, PMP, ISO27000, and ITILv3 certified, is Managing Director, of CISO Spotlight, LLC

Todd has built and led multiple Fortune 500/large company information security programs for 20 years across multiple industries, named 2016-17 Chicago CISO of the Year by AITP, ISSA, ISACA, Infragard and SIM, ranked Top 50 Information Security Executive, and Information Security Executive (ISE) Award Finalist, and named Ponemon Institute Fellow. Fitzgerald coauthored with Micki Krause the first professional organization Chief Information Security Officer Book, CISO Leadership: Essential Principles for Success (ISC2 Press, 2008). Todd also authored Information Security Governance Simplified: From the Boardroom to the Keyboard (Auerbach, 2012), and co-authored Certified Chief Information Security Officer Body of Knowledge (E-C Council, 2014), and has contributed to over a dozen others. Fitzgerald has participated in the development of materials for the Official CISSP Exam Study Guide, Information Security Handbook Series, ISACA COBIT 5 for Information Security and ISACA CSX Cybersecurity Fundamentals.

Fitzgerald is a top-rated RSA Conference speaker and is frequently called upon to present at international, national and local conferences for Information Systems Audit and Control Association (ISACA), Information Systems security Association (ISSA), Management Information Systems Training Institute (MISTI), COSAC, Centers for Medicare and Medicaid Services, T.E.N., and others. Fitzgerald serves on the HIPAA Collaborative of Wisconsin Board of Directors (2002-present), Milwaukee Area Technical College Security Advisory Board, and University of Wisconsin-La Crosse College of Business Administration Board of Advisors.

Prior senior leadership includes SVP, CAO Information Security Northern Trust, Global CISO Grant Thornton International, Ltd, Global CISO ManpowerGroup, Medicare Security Officer/External Audit Oversight WellPoint (now Anthem) Blue Cross Blue Shield-National Government Services, CISO North & Latin America Zeneca/Syngenta and senior Information Technology leadership positions with IMS Health, and American Airlines. Todd earned a B.S. in Business Administration from the University of Wisconsin-La Crosse and Master Business Administration with highest honors from Oklahoma State University.

作者簡介(中文翻譯)

Todd Fitzgerald，擁有CISSP、CISA、CISM、CIPM、CIPP/US、CIPP/E、CIPP/C、CGEIT、CRISC、PMP、ISO27000和ITILv3認證，是CISO Spotlight, LLC的董事總經理。

Todd在多個行業中建立並領導了多個《財富》500強/大型公司的資訊安全計劃，擁有20年的經驗，曾被AITP、ISSA、ISACA、Infragard和SIM評選為2016-17年芝加哥年度CISO，並被評為前50名資訊安全高管，資訊安全高管（ISE）獎項決賽入圍者，並被任命為Ponemon Institute Fellow。Fitzgerald與Micki Krause共同撰寫了第一本專業組織首席資訊安全官書籍《CISO Leadership: Essential Principles for Success》（ISC2 Press，2008年）。Todd還撰寫了《資訊安全治理簡化：從董事會到鍵盤》（Auerbach，2012年），並共同撰寫了《認證首席資訊安全官知識體系》（E-C Council，2014年），並為十多本其他書籍做出了貢獻。Fitzgerald參與了官方CISSP考試學習指南、資訊安全手冊系列、ISACA COBIT 5資訊安全和ISACA CSX網路安全基礎的材料開發。

Fitzgerald是RSA大會的高評價演講者，經常受邀在國際、國家和地方的會議上發表演講，包括資訊系統審計與控制協會（ISACA）、資訊系統安全協會（ISSA）、管理資訊系統培訓學院（MISTI）、COSAC、醫療保險和醫療補助服務中心、T.E.N.等。Fitzgerald擔任威斯康辛州HIPAA合作組織董事會成員（2002年至今）、密爾瓦基地區技術學院安全諮詢委員會成員，以及威斯康辛大學拉克羅斯商學院顧問委員會成員。

之前的高級領導職位包括北信託的資深副總裁、首席資訊安全官、Grant Thornton International, Ltd的全球CISO、ManpowerGroup的全球CISO、WellPoint（現為Anthem）藍十字藍盾的醫療保險安全官/外部審計監督、Zeneca/Syngenta的北美和拉丁美洲CISO，以及IMS Health和美國航空的高級資訊科技領導職位。Todd在威斯康辛大學拉克羅斯獲得商業管理學士學位，並在俄克拉荷馬州立大學以最高榮譽獲得工商管理碩士學位。