Understand, manage, and measure cyber risk

• Verfasst von: Leirvik, Ryan [VerfasserIn]
• Titel: Understand, manage, and measure cyber risk
• Titelzusatz: practical solutions for creating a sustainable cyber program
• Verf.angabe: Ryan Leirvik
• Ausgabe: Second edition.
• Verlagsort: New York
• Verlag: Apress
• E-Jahr: 2023
• Jahr: [2023]
• Umfang: 1 online resource (xxiv, 223 pages)
• Illustrationen: illustrations
• Fussnoten: Includes index. - Online resource; title from PDF title page (SpringerLink, viewed June 22, 2023)
• ISBN: 978-1-4842-9319-5
• ISBN: 1-4842-9319-3
• Datenträger: Online-Ressource
• Sprache: eng
• Bibliogr. Hinweis: Erscheint auch als : Druck-Ausgabe
• Sach-SW: Surveillance des menaces informatiques
• Sach-SW: Réseaux d'ordinateurs ; Sécurité ; Mesures
• Sach-SW: Computer networks ; Security measures
• Sach-SW: Cyber intelligence (Computer security)
• K10plus-PPN: 1879407698
• K10plus-PPN:
  Universitätsbibliothek
• Lokale URL UB: Zum Volltext
• Lokale URL UB: Bibliothek der Medizinischen Fakultät Mannheim der Universität Heidelberg
• Bibliothek/Idn: UW / m4471899740
• Lokale URL Inst.: Zum Volltext

Abstract

When it comes to managing cybersecurity in an organization, most organizations tussle with basic foundational components. This practitioner⁰́₉s guide lays down those foundational components, with real client examples and pitfalls to avoid. A plethora of cybersecurity management resources are available⁰́₄many with sound advice, management approaches, and technical solutions⁰́₄but few with one common theme that pulls together management and technology, with a focus on executive oversight. Author Ryan Leirvik helps solve these common problems by providing a clear, easy-to-understand, and easy-to-deploy "playbook" for a cyber risk management approach applicable to your entire organization. This second edition provides tools and methods in a straight-forward, practical manner to guide the management of a cybersecurity program. Expanded sections include the critical integration of cyber risk management into enterprise risk management, the important connection between a Software Bill of Materials and Third-party Risk Programs, and additional "how to" tools and material for mapping frameworks to controls. Praise for Understand, Manage, and Measure Cyber Risk What lies ahead of you in the pages of this book? Clean practicality, not something that just looks good on paper⁰́₄brittle and impractical when exposed to the real world. I prize flexibility and simplicity instead of attempting to have answers for everything and the rigidity that results. This simplicity is what I find valuable within Ryan's book. Tim Collyer, Motorola Solutions It seems that I have found a kindred spirit⁰́₄a builder who has worked with a wide variety of client CISOs on their programs, gaining a deep understanding of how a successful and sustainable program should be constructed. Ryan's cyber work in the US Department of Defense, his McKinsey & Company consulting, and his advisory and survey work with IANS give him a unique global view of our shared passion. Nicholas J. Mankovich, PhD, MS, CISPP.