| Risk Analysis and Security Countermeasure Selection | 
| Author: Thomas L. Norman CPP/PSP/CSC
Publisher: CRC Press
List Price: $59.95
Buy New: $47.96
as of 9/9/2010 19:20 CDT details
You Save: $11.99 (20%)
New (13) Used (6) from $42.50
Rating:  2 reviews
Media: Hardcover
Edition: 1
Pages: 422
Number Of Items: 1
Shipping Weight (lbs): 2
Dimensions (in): 10.1 x 7.2 x 1
ISBN: 1420078704
Dewey Decimal Number: 658.47
EAN: 9781420078701
Publication Date: December 18, 2009
| |
| Also Available In:
|
| Similar Items:
| |
| Customer Reviews:
Excellent Resource for the Security Professional July 2, 2010
David A. Moore, PE, CSP
Tom Norman has made a major contribution to the practical documentation of the theory and best practices in security vulnerability assessment. His insights as a practicioner are extremely valuable to the reader. His work is current and comprehensive, and provides a thorough discussion on such topics as available methods, concepts and theory, advantages and disadvantages, and tools to make using them more effective. I highly recommend this book for the library of anyone interested in modern security management and risk analysis methods.
Congratulations on a tireless work well done!
David A. Moore, PE, CSP
President & CEO
AcuTech Consulting Group
1600 Tysons Blvd
Suite 800
McLean, VA 22102
[...]
An Excellent Book for the Security Professional January 2, 2010
Ross L. Johnson (Edmonton, Alberta)
1 out of 1 found this review helpful
I have know Tom Norman for many years, and I do not know anyone that can match him for the depth of knowledge and experience he has in the security profession. He has a gift for understanding and communicating the essence of something: he can tell you not only what is important, but why it is important, and how it relates to other components within an overall security system. I consider his books to be essential toolbox works, destined to be dog-eared, annotated, and bristling with Post-It Notes. They don't belong on the bookshelf, but in the field or on the desk, where you can reach them easily.
This book does not disappoint. It is rich in detail, filled with how-to information that will guide the reader through the risk analysis process from the beginning to the end. The section on selection of methodologies provides the reader with information on what is available and their strengths and weaknesses. The author contributes one that he developed from studying al Qaeda: called the KSM-Asset Target Value for Terrorism Matrix. Named for Khalid Shaihk Mohammed, it provides a methodology for asset target valuation that closely mirrors the apparent priorities of the foremost terrorist network in the world today, giving security professionals insight into the relative value their assets may have to a terrorist adversary.
The premise of this book is that security is a seamless process that connects threat to analysis to behavior to countermeasures to metrics and finally reporting. The author covers each topic in great detail, explaining concepts, discussing competing theories, ultimately assisting the reader in making the decision of what will work for his or her organization. The author guides, but does not preach.
This book contains excellent material on security management as well. It describes the role of security policies and how they fit the security management framework. This book takes the correct but often overlooked view that security policies are a part of the chain connecting risk analysis with the selection and implementation of appropriate countermeasures.
The discussion on countermeasures is detailed and comprehensive as well. Mr. Norman has a tremendous background in security technology, and that really shines through in this part. He explains how all the countermeasures work, how they fit into a security plan, and how to measure their performance.
There is material in this book for all levels of security professional - the beginner all the way through to the experienced practitioner. It would also make an excellent textbook for any course on security management, risk analysis, security policy development, or countermeasure planning.
|
We Accept All Major Payment Types! | |
|
|
|
|
CERTAIN CONTENT THAT APPEARS ON THIS SITE COMES FROM AMAZON SERVICES LLC. THIS CONTENT IS PROVIDED ‘AS IS’ AND IS SUBJECT TO CHANGE OR REMOVAL AT ANY TIME. Brought to you by Sagetips, LLC in Association with Amazon | |
