8.2 BCP Maintenance - Business Continuity and Disaster Recovery for InfoSec Managers [Book]

Skip to main content

Get full access to Business Continuity and Disaster Recovery for InfoSec Managers and 60K+ other titles, with a free 10-day trial of O'Reilly.

There are also live events, courses curated by job role, and more.

Start your free trial

336

system, 306–7

time-based, 219–20

training, 300

Security education, xxxiii–xl

awareness, xxxiv

GLBA, xxxvi, xxxvii–xxxviii

HIPAA, xxxiii–xl, xxxvi

NAIC, xxxvi–xxxvii

policy dissemination/enforcement, xxxiii

privacy standards/regulation, xxxv–xxxvi

social engineering and, xxxv

target, xxxiv

Security management, 295–321

alerts and advisories, 302–3

areas of responsibility, 299–300

awareness programs, 299–300

convincing management of need, 297–99

e-mail, 305

employee termination procedures, 303–4

incident handling, 301–2

Internet use, 305

organizational, 295–99

organizational structure, 296–97

personnel security, 304–5

practices, lxiii–lxiv

risk analysis, 300–301

security group placement, 296

security perceptions, 295

sensitive information, 305–6

training, 304

warning banners, 303

Security policies, 307–12

Access Policy, 311

Accountability Policy, 311

approach, 308

Authentication Policy, 311

Availability Statements, 311

components, 310–12

Computer Technology Purchasing

Guidelines, 312

deﬁnition and purpose, 310

development, auditor’s role, 208–10

establishment of, xliii

good, 310

Network Maintenance Policy, 311

protective measures implementation, 309–

10

review, 312

static, 210

threat likelihood, 309

Violations Reporting Policy, 312

what needs protection, 308

Security professionals

accountability, 321

certiﬁcation, 315–18

hiring, 315

identifying, 314–15

insider threats and, 313–14

management of, 318–21

organizational structure, 319–20

reporting relationships, 320

working relationships, 320

Security-related jobs, 318

Security testing, 197–200

concepts and application, 198

conﬁdentiality, 199

frequency, 199–200

open source methodology manual, 200–

201

results, measurement and interpretation,

199

risks, 198–99

thoroughness, 199

traceability, 199

Sensitive information, 60–61, 305–6

Server clustering, 143–44

asymmetric clusters, 143

deﬁned, 143

illustrated, 143

symmetric clusters, 144

Servers

deﬁned, 149

Get Business Continuity and Disaster Recovery for InfoSec Managers now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Don’t leave empty-handed

Get Mark Richards’s Software Architecture Patterns ebook to better understand how to design components—and how they should interact.

It’s yours, free.

Get it now

Cover of Software Architecture Patterns

Check it out now on O’Reilly

Dive in for free with a 10-day trial of the O’Reilly learning platform—then explore all the other resources our members count on to build skills and solve problems every day.

Start your free trial Become a member now