vii
© 2011 by Taylor & Francis Group, LLC
Editor
Hal Tipton, currently an independent consultant, is a past president of the Inter-
national Information System Security Certication Consortium and was a director
of computer security for Rockwell International Corporation for about 15 years.
He initiated the Rockwell computer and data security program in 1977 and then
continued to administer, develop, enhance, and expand the program to accom-
modate the control needs produced by technological advances until his retirement
from Rockwell in 1994.
Tipton has been a member of the Information Systems Security Association
(ISSA) since 1982. He was the president of the Los Angeles chapter in 1984 and
the president of the national organization of ISSA (1987–1989). He was added to
the ISSA Hall of Fame and the ISSA Honor Roll in 2000.
Tipton was a member of the National Institute for Standards and Technology
(NIST), the Computer and Telecommunications Security Council, and the National
Research Council Secure Systems Study Committee (for the National Academy of
Sciences). He received his BS in engineering from the U.S. Naval Academy and
his MA in personnel administration from George Washington University; he also
received his certicate in computer science from the University of California at
Irvine. He is a certied information system security professional (CISSP), ISSAP,
and ISSMP.
He has published several papers on information security issues for Auerbach
Publishers (Handbook of Information Security Management Data Security Manage-
ment); Information Security Journal; National Academy of Sciences (Computers at
Risk); Data Pro Reports; and Elsevier ISSA Access magazine.
He has been a speaker at all the major information security conferences includ-
ing the Computer Security Institute, the ISSA Annual Working Conference, the
Computer Security Workshop, MIS Conferences, AIS Security for Space Oper ations,
DOE Computer Security Conference, National Computer Security Conference, IIA
Security Conference, EDPAA, UCCEL Security & Audit Users Conference, and
Industrial Security Awareness Conference.
He has conducted or participated in information security seminars for (ISC)
2
,
Frost & Sullivan, UCI, CSULB, System Exchange Seminars, and the Institute for
viii ◾ Editor
© 2011 by Taylor & Francis Group, LLC
International Research. He participated in the Ernst & Young video “Protecting
Information Assets.” He is currently the editor of the Handbook of Information
Security Management (Auerbach Publications). He chairs the (ISC)
2
CBK
Committees and the QA Committee. He received the Computer Security Institute’s
Lifetime Achievement Award in 1994, the (ISC)
2
’s Hal Tipton Award in 2001, and
the (ISC)
2
Founders Award in 2009.
Get Official (ISC)2® Guide to the ISSMP® CBK® now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
