The IT Regulatory and Standards Compliance Handbook:: How to Survive Information Systems Audit and Assessments
暫譯: 資訊科技法規與標準遵循手冊:如何應對資訊系統審計與評估
Craig S. Wright
- 出版商: Syngress Media
- 出版日期: 2008-06-01
- 定價: $2,380
- 售價: 5.0 折 $1,190
- 語言: 英文
- 頁數: 750
- 裝訂: Paperback
- ISBN: 1597492663
- ISBN-13: 9781597492669
-
相關分類:
管理與領導 Management-leadership、資訊安全、Information-management
立即出貨 (庫存=1)
買這商品的人也買了...
-
Frameworks for IT Management: An Introduction$2,400$2,280 -
IT Auditing Using Controls to Protect Information Assets, 2/e (Paperback)$2,610$2,480 -
專案管理實務-利用完整的控管文件來管理專案$400$312 -
$2,147Auditing Cloud Computing: A Security and Privacy Guide (Hardcover) -
Web Application Security, A Beginner's Guide (Paperback)$1,980$1,881 -
$177人工智能 -
諸神之眼 : Nmap 網絡安全審計技術揭秘$294$279 -
$301scikit learn機器學習:常用算法原理及編程實戰 -
$1,118Advanced Deep Learning with Keras: Applying GANs and other new deep learning algorithms to the real world (Paperback) -
Pragmatic AI$1,440$1,368 -
$301走近安全 — 網絡世界的攻與防 -
智能風控:Python 金融風險管理與評分卡建模$534$507 -
人工智慧:8堂一點就通的基礎活用課$380$296 -
最踏實 AI 之路:全白話機器學習一次搞懂$780$616 -
$407金融中的人工智能 -
人工智能(第3版)$719$683
相關主題
商品描述
This book provides comprehensive methodology, enabling the staff charged with an IT security audit to create a sound framework, allowing them to meet the challenges of compliance in a way that aligns with both business and technical needs. This "roadmap" provides a way of interpreting complex, often confusing, compliance requirements within the larger scope of an organization's overall needs.
Key Features:
* The ulitmate guide to making an effective security policy and controls that enable monitoring and testing against them
* The most comprehensive IT compliance template available, giving detailed information on testing all your IT security, policy and governance requirements
* A guide to meeting the minimum standard, whether you are planning to meet ISO 27001, PCI-DSS, HIPPA, FISCAM, COBIT or any other IT compliance requirement
* Both technical staff responsible for securing and auditing information systems and auditors who desire to demonstrate their technical expertise will gain the knowledge, skills and abilities to apply basic risk analysis techniques and to conduct a technical audit of essential information systems from this book
* This technically based, practical guide to information systems audit and assessment will show how the process can be used to meet myriad compliance issues
Key Features:
* The ulitmate guide to making an effective security policy and controls that enable monitoring and testing against them
* The most comprehensive IT compliance template available, giving detailed information on testing all your IT security, policy and governance requirements
* A guide to meeting the minimum standard, whether you are planning to meet ISO 27001, PCI-DSS, HIPPA, FISCAM, COBIT or any other IT compliance requirement
* Both technical staff responsible for securing and auditing information systems and auditors who desire to demonstrate their technical expertise will gain the knowledge, skills and abilities to apply basic risk analysis techniques and to conduct a technical audit of essential information systems from this book
* This technically based, practical guide to information systems audit and assessment will show how the process can be used to meet myriad compliance issues
商品描述(中文翻譯)
本書提供全面的方法論,使負責 IT 安全審計的工作人員能夠建立健全的框架,讓他們以符合商業和技術需求的方式應對合規挑戰。這個「路線圖」提供了一種解釋複雜且常常令人困惑的合規要求的方法,並將其置於組織整體需求的更大範疇之中。
主要特點:
* 最終指南,幫助制定有效的安全政策和控制措施,以便對其進行監控和測試
* 最全面的 IT 合規模板,提供有關測試所有 IT 安全、政策和治理要求的詳細信息
* 無論您計劃滿足 ISO 27001、PCI-DSS、HIPAA、FISCAM、COBIT 或任何其他 IT 合規要求,本書都是滿足最低標準的指南
* 負責保護和審計資訊系統的技術人員以及希望展示其技術專業知識的審計員,將從本書中獲得應用基本風險分析技術和進行關鍵資訊系統技術審計的知識、技能和能力
* 本書是一本以技術為基礎的實用指南,針對資訊系統的審計和評估,將展示如何利用該過程來解決各種合規問題
