Building a Cyber Risk Management Program: Evolving Security for the Digital Age
暫譯: 建立網路風險管理計畫:為數位時代演進的安全性
Allen, Brian, Bapst, Brandon, Hicks, Terry
相關主題
商品描述
Cyber risk management is one of the most urgent issues facing enterprises today. This book presents a detailed framework for designing, developing, and implementing a cyber risk management program that addresses your company's specific needs. Ideal for corporate directors, senior executives, security risk practitioners, and auditors at many levels, this guide offers both the strategic insight and tactical guidance you're looking for.
You'll learn how to define and establish a sustainable, defendable, cyber risk management program, and the benefits associated with proper implementation. Cyber risk management experts Brian Allen and Brandon Bapst, working with writer Terry Allan Hicks, also provide advice that goes beyond risk management. You'll discover ways to address your company's oversight obligations as defined by international standards, case law, regulation, and board-level guidance.
This book helps you:
- Understand the transformational changes digitalization is introducing, and new cyber risks that come with it
- Learn the key legal and regulatory drivers that make cyber risk management a mission-critical priority for enterprises
- Gain a complete understanding of four components that make up a formal cyber risk management program
- Implement or provide guidance for a cyber risk management program within your enterprise
商品描述(中文翻譯)
網路風險管理是當今企業面臨的最緊迫問題之一。本書提供了一個詳細的框架,用於設計、開發和實施符合您公司特定需求的網路風險管理計劃。這本指南非常適合企業董事、高級管理人員、安全風險實務者以及各級審計師,提供了您所尋求的戰略洞察和戰術指導。
您將學習如何定義和建立一個可持續的、可防禦的網路風險管理計劃,以及與正確實施相關的好處。網路風險管理專家 Brian Allen 和 Brandon Bapst 與作家 Terry Allan Hicks 合作,提供超越風險管理的建議。您將發現如何滿足公司在國際標準、案例法、法規和董事會指導下所定義的監督義務。
本書幫助您:
- 了解數位化所帶來的轉型變化,以及隨之而來的新網路風險
- 學習使網路風險管理成為企業任務關鍵優先事項的主要法律和監管驅動因素
- 完整理解構成正式網路風險管理計劃的四個組成部分
- 在您的企業內實施或提供網路風險管理計劃的指導
