𝔖 Scriptorium
✦   LIBER   ✦
πŸ“

Enterprise Security Risk Management: Concepts and Applications

✍ Scribed by Brian J. Allen, Rachelle Loyear

Publisher
Rothstein Associates
Year
2017
Tongue
English
Leaves
396
Category
Library
⬇  Acquire This Volume

No coin nor oath required. For personal study only.

✦ Synopsis

As a security professional, have you found that you and others in your company do not always define β€œsecurity” the same way? Perhaps security interests and business interests have become misaligned. Brian Allen and Rachelle Loyear offer a new approach: Enterprise Security Risk Management (ESRM). By viewing security through a risk management lens, ESRM can help make you and your security program successful. In their long-awaited book, based on years of practical experience and research, Brian Allen and Rachelle Loyear show you step-by-step how Enterprise Security Risk Management (ESRM) applies fundamental risk principles to manage all security risks. Whether the risks are informational, cyber, physical security, asset management, or business continuity, all are included in the holistic, all-encompassing ESRM approach which will move you from task-based to risk-based security.

✦ Table of Contents

Dedication
Acknowledgments
Foreword
Foreword
Foreword
Table of Contents
Part 1: Why Enterprise Security Risk Management (ESRM)?
1 What is Enterprise Security Risk Management?
2 How Can ESRM Help You?
3 How Can ESRM Help Your Security Program?
Part 2: The Fundamentals of ESRM
4 Preparing for an ESRM Program
5 The ESRM Cycle – An Overview
6 The ESRM Cycle – Step 1: Identify and Prioritize Assets
7 The ESRM Cycle – Step 2: Identify and Prioritize Security Risks
8 The ESRM Cycle – Step 3: Mitigate Prioritized Risks
9 The ESRM Cycle – Step 4: Improve and Advance
Part 3: Designing a Program That Works for Your Enterprise
11 Rolling Out Your ESRM Program
Part 4: Making ESRM Work for Your Organization
12 ESRM Essentials for Success
13 Security Governance
14 The Security Organization
Part 5: An ESRM Approach to Tactical Security Disciplines
15 ESRM and Investigations
16 ESRM and Physical Security
17 ESRM and Cybersecurity and Information Security
18 ESRM and Workplace Violence and Threat Management
19 ESRM and Business Continuity and Crisis Management
Part 6: ESRM Program Performance and Evaluation
20 ESRM for Business Executives and Boards of Directors
21 Security Budgeting Process
22 Reporting and Metrics That Matter
23 ESRM and the Path to Security Convergence
Credits
About the Authors

πŸ“œ SIMILAR VOLUMES

Security Convergence: Managing Enterpris
πŸ“ Security Convergence: Managing Enterprise Security Risk
✍ Dave Tyson πŸ“‚ Library πŸ“… 2007 🌐 English

Security Convergence describes the movement in business to combine the roles of physical security and security management with network computer security measures within an organization. This is the first book to discuss the subject of security convergence, providing real-world illustrations of imp

Risk Management and Governance: Concepts
πŸ“ Risk Management and Governance: Concepts, Guidelines and Applications
✍ Terje Aven, Ortwin Renn (auth.) πŸ“‚ Library πŸ“… 2010 πŸ› Springer-Verlag Berlin Heidelberg 🌐 English

<p>Risk is a popular topic in many sciences - in natural, medical, statistical, engineering, social, economic and legal disciplines. Yet, no single discipline can grasp the full meaning of risk. Investigating risk requires a multidisciplinary approach. The authors, coming from two very different dis

Risk Management and Governance: Concepts
πŸ“ Risk Management and Governance: Concepts, Guidelines and Applications (Risk, Governance and Society, 16)
✍ Terje Aven, Ortwin Renn πŸ“‚ Library πŸ“… 2010 πŸ› Springer 🌐 English

<span>Risk is a popular topic in many sciences - in natural, medical, statistical, engineering, social, economic and legal disciplines. Yet, no single discipline can grasp the full meaning of risk. Investigating risk requires a multidisciplinary approach. The authors, coming from two very different

Enterprise GIS: Concepts and Application
πŸ“ Enterprise GIS: Concepts and Applications
✍ John Woodard πŸ“‚ Library πŸ“… 2020 πŸ› CRC Press 🌐 English

This book defines and discusses how the field of Enterprise Architecture (EA) can be incorporated into the design of Enterprise Geographic Information Systems (EGIS). The objective of EA is to develop a strategic plan that structures an organization's resources (data, information, people, and assets

Enterprise GIS: Concepts and Application
πŸ“ Enterprise GIS: Concepts and Applications
✍ John Woodard πŸ“‚ Library πŸ“… 2020 πŸ› CRC Press 🌐 English

This book defines and discusses how the field of Enterprise Architecture (EA) can be incorporated into the design of Enterprise Geographic Information Systems (EGIS). The objective of EA is to develop a strategic plan that structures an organization's resources (data, information, people, and assets

Enterprise GIS: Concepts and Application
πŸ“ Enterprise GIS: Concepts and Applications
✍ John R. Woodard πŸ“‚ Library πŸ“… 2019 πŸ› CRC Press 🌐 English

<p>This book defines and discusses how the field of Enterprise Architecture (EA) can be incorporated into the design of Enterprise Geographic Information Systems (EGIS). The objective of EA is to develop a strategic plan that structures an organization’s resources (data, information, people, and ass