The Expert in the Next Office: Tools for Managing Operations and Security in the Era of Cyberspace

隨著組織越來越依賴電子資訊，缺乏系統性的有效操作和安全原則訓練正造成混亂。本書回顧了操作和安全管理者及員工的基本概念和實用建議。

M. E. Kabay completed his BSc in genetics (1970) and his MSc in teratology (1972) at McGill University. In 1976, he completed his PhD from Dartmouth College in applied statistics and invertebrate zoology and then taught statistics, programming, and biology as a university professor in Canada and overseas.

In 1979, he joined a compiler team for a new fourth-generation programming language (4GL) and relational database management system in the U.S. and then joined Hewlett-Packard Canada in 1980 as an operating-systems and DB-performance specialist, winning the Systems Engineer of the Year Award in 1982 and teaching MPE operating system, IMAGE/3000 database and VPLUS/3000 GUI-design courses as well as serving as support engineer to HP's hospital, university and government customers and managing HP's bilingual call center (Phone-In Consulting Service) for Québec and the Maritime provinces.

He served as adjunct faculty in the 1980s in the University of Ottawa Institute for Government Informatics Professionals, the John Abbot College Programmers' Course and their Technical Support Program, and the McGill University Management Institute before joining Norwich University in 2001.

He founded his own company, JINBU Corporation, in 1986; much of his consulting work in that firm was database-performance analysis and redesign for optimization. Other assignments included overall operating-system analysis and optimization for improved performance to meet service-level agreements for quality of service; he was assigned twelve such contracts for the Government of Canada in 1989. He also completed several contracts in organizational analysis to help improve operations and management processes.

He served as Director of Education for the National Computer Security Association (later ICSA and then TruSecure) from 1991 to 1999 and taught security courses around the world, including Europe, Asia and North America. He was the Leader of the INFOSEC Delegation to the People's Republic of China in 1993 and provided a 100 page report on his contacts to the Canadian Security Information Service (CSIS). He worked with Adario/AtomicTangerine where he supported the International Institute for Information Integrity (I-4).

He was a member of the committees defining the Common Body of Knowledge for the Certified Information Systems Security Professional (CISSP) designation in the mid-1990s and earned his CISSP in 1997. The committee used his 1996 textbook, The NCSA Guide to Enterprise Security (McGraw-Hill) as one of their resources. His certification as an Information Systems Security Management Professional (ISSMP) was granted in 2005. He terminated his use of the CISSP and ISSMP designations in 2021.

Since 1986 (and as of early 2021), he has published over 2,000 articles in operations management and security, and served as Technical Editor of the 4th (2002), 5th (2009) and 6th (2014) editions of the Computer Security Handbook (Wiley). He wrote two security-management columns a week distributed by Network World from February 2000 to September 2011 and one per week for InfoSec Perception from October 2011 to the end of 2013. His public website has a total of over 2,000 PDF files and over 500 instructional PowerPoint files freely available to anyone for non-commercial use.

He has been an invited lecturer at the U.S. War College, the Pentagon, and at NATO Counterintelligence training in Germany. He was inducted into the Information Systems Security Association (ISSA) Hall of Fame in December 2004.

From 2002 to 2009, he was the creator and Director of the Master's Program in Information Assurance (MSIA) in the College of Graduate and Continuing Studies (CGCS) at Norwich University, Northfield, Vermont where he was also the Chief Technical Officer of the CGCS from 2007 to 2009. Returning full time to the School of Business & Management in 2009, he was promoted to Professor of Computer Information Systems in May 2011 and was appointed Associate Director of the Norwich University Center for Advanced Computing and Digital Forensics in July 2011.

He retired on 31 December 2020 after teaching at Norwich for 20 years. In May 2021, he was anointed (er, appointed) Emeritus Professor of Computer Science in the School of Cybersecurity, Data Science and Computing, College of Professional Schools, Norwich University.

M. E. Kabay 在 1970 年完成了他的遺傳學學士學位，並在 1972 年獲得了麥吉爾大學的畸形學碩士學位。1976 年，他在達特茅斯學院獲得應用統計學和無脊椎動物學的博士學位，隨後在加拿大及海外擔任大學教授，教授統計學、程式設計和生物學。

1979 年，他加入了一個編譯器團隊，負責開發一種新的第四代程式語言（4GL）和關聯式資料庫管理系統，並於 1980 年加入惠普加拿大，擔任作業系統和資料庫效能專家，於 1982 年獲得年度系統工程師獎，並教授 MPE 作業系統、IMAGE/3000 資料庫和 VPLUS/3000 GUI 設計課程，同時擔任惠普醫院、大學和政府客戶的支援工程師，並管理惠普在魁北克和大西洋省的雙語客服中心（電話諮詢服務）。

在 1980 年代，他擔任渥太華大學政府資訊專業人員研究所、約翰·阿博特學院程式設計課程及其技術支援計畫，以及麥吉爾大學管理學院的兼任教職，直到 2001 年加入諾里奇大學。

他於 1986 年創立了自己的公司 JINBU Corporation；在該公司的諮詢工作中，主要專注於資料庫效能分析和優化重設。其他任務包括整體作業系統分析和優化，以改善效能以符合服務水平協議的品質要求；他於 1989 年獲得了加拿大政府的十二個此類合約。他還完成了幾個組織分析的合約，以幫助改善運營和管理流程。

他於 1991 年至 1999 年擔任國家電腦安全協會（後來的 ICSA 和 TruSecure）的教育總監，並在全球各地教授安全課程，包括歐洲、亞洲和北美。他於 1993 年擔任 INFOSEC 代表團團長，前往中華人民共和國，並向加拿大安全情報局（CSIS）提供了一份 100 頁的聯絡報告。他曾與 Adario/AtomicTangerine 合作，支持國際資訊完整性研究所（I-4）。

他是 1990 年代中期定義認證資訊系統安全專業人員（CISSP）資格的共同知識體的委員會成員，並於 1997 年獲得 CISSP 認證。該委員會使用了他 1996 年出版的教科書《NCSA 企業安全指南》（McGraw-Hill）作為資源之一。他於 2005 年獲得資訊系統安全管理專業人員（ISSMP）認證，並於 2021 年終止使用 CISSP 和 ISSMP 的資格。

自 1986 年以來（截至 2021 年初），他已發表超過 2,000 篇有關運營管理和安全的文章，並擔任《電腦安全手冊》（Wiley）第四版（2002 年）、第五版（2009 年）和第六版（2014 年）的技術編輯。他從 2000 年 2 月到 2011 年 9 月每週為《Network World》撰寫兩篇安全管理專欄，並從 2011 年 10 月到 2013 年底每週為《InfoSec Perception》撰寫一篇。他的公共網站上有超過 2,000 個 PDF 檔案和超過 500 個可供非商業使用的教學 PowerPoint 檔案，免費提供給任何人。

他曾受邀在美國戰爭學院、五角大廈和德國的北約反情報訓練中擔任講師。他於 2004 年 12 月被納入資訊系統安全協會（ISSA）名人堂。

從 2002 年到 2009 年，他是諾里奇大學研究生及持續教育學院（CGCS）資訊保障碩士課程（MSIA）的創始人和主任。