國立虎尾科技大學 |

Understand, manage, and measure cyber risk® = practical solutions for creating a sustainable cyber program /

Record Type:	Language materials, printed : Monograph/item
Title/Author:	Understand, manage, and measure cyber risk®/ by Ryan Leirvik.
Reminder of title:	practical solutions for creating a sustainable cyber program /
Author:	Leirvik, Ryan.
Published:	Berkeley, CA :Apress : : 2023.,
Description:	xxiv, 223 p. :ill., digital ; : 24 cm.;
Contained By:	Springer Nature eBook
Subject:	Cyber intelligence (Computer security) - Congresses. -
Online resource:	https://doi.org/10.1007/978-1-4842-9319-5
ISBN:	9781484293195

Understand, manage, and measure cyber risk® = practical solutions for creating a sustainable cyber program /
Leirvik, Ryan.

Understand, manage, and measure cyber risk®practical solutions for creating a sustainable cyber program /[electronic resource] :by Ryan Leirvik. - Second edition. - Berkeley, CA :Apress :2023. - xxiv, 223 p. :ill., digital ;24 cm.

Part 1: The Problem -- Chapter 1: What Is the Problem?,- Chapter 2: Why Is it Complicated? -- Chapter 3: How to Address the Problem- Part 2: The Solution -- Chapter 4: Understand the Problem -- Chapter 5: Manage the Problem -- Chapter 6: Get Ready for Measures -- Chapter 7: Measure the Problem -- Chapter 8: Report Upward -- Chapter 9: Questions Boards Should Ask -- Chapter 10: Conclusion -- Appendix.

When it comes to managing cybersecurity in an organization, most organizations tussle with basic foundational components. This practitioner's guide lays down those foundational components, with real client examples and pitfalls to avoid. A plethora of cybersecurity management resources are available-many with sound advice, management approaches, and technical solutions-but few with one common theme that pulls together management and technology, with a focus on executive oversight. Author Ryan Leirvik helps solve these common problems by providing a clear, easy-to-understand, and easy-to-deploy "playbook" for a cyber risk management approach applicable to your entire organization. This second edition provides tools and methods in a straight-forward, practical manner to guide the management of a cybersecurity program. Expanded sections include the critical integration of cyber risk management into enterprise risk management, the important connection between a Software Bill of Materials and Third-party Risk Programs, and additional "how to" tools and material for mapping frameworks to controls. Praise for Understand, Manage, and Measure Cyber Risk What lies ahead of you in the pages of this book? Clean practicality, not something that just looks good on paper-brittle and impractical when exposed to the real world. I prize flexibility and simplicity instead of attempting to have answers for everything and the rigidity that results. This simplicity is what I find valuable within Ryan's book. Tim Collyer, Motorola Solutions It seems that I have found a kindred spirit-a builder who has worked with a wide variety of client CISOs on their programs, gaining a deep understanding of how a successful and sustainable program should be constructed. Ryan's cyber work in the US Department of Defense, his McKinsey & Company consulting, and his advisory and survey work with IANS give him a unique global view of our shared passion. Nicholas J. Mankovich, PhD, MS, CISPP.

ISBN: 9781484293195

Standard No.: 10.1007/978-1-4842-9319-5doiSubjects--Topical Terms:

1002572
Cyber intelligence (Computer security)
--Congresses.

LC Class. No.: TK5105.59 / .L45 2023

Dewey Class. No.: 005.8

Understand, manage, and measure cyber risk® = practical solutions for creating a sustainable cyber program /
LDR:03527nam a2200361 a 4500 001 1106127
003 DE-He213
005 20230613191925.0
006 m d
007 cr nn 008maaau
008 231013s2023 cau s 0 eng d
020 $a 9781484293195 $q (electronic bk.)
020 $a 9781484293188 $q (paper)
024 7 $a 10.1007/978-1-4842-9319-5 $2 doi
035 $a 978-1-4842-9319-5
040 $a GP $c GP
041 0 $a eng
050 4 $a TK5105.59 $b .L45 2023
072 7 $a UR $2 bicssc
072 7 $a UTN $2 bicssc
072 7 $a COM053000 $2 bisacsh
072 7 $a UR $2 thema
072 7 $a UTN $2 thema
082 0 4 $a 005.8 $2 23
090 $a TK5105.59 $b .L531 2023
100 1 $a Leirvik, Ryan. $e author. $3 1401318
245 1 0 $a Understand, manage, and measure cyber risk® $h [electronic resource] : $b practical solutions for creating a sustainable cyber program / $c by Ryan Leirvik.
250 $a Second edition.
260 $a Berkeley, CA : $b Apress : $b Imprint: Apress, $c 2023.
300 $a xxiv, 223 p. : $b ill., digital ; $c 24 cm.
505 0 $a Part 1: The Problem -- Chapter 1: What Is the Problem?,- Chapter 2: Why Is it Complicated? -- Chapter 3: How to Address the Problem- Part 2: The Solution -- Chapter 4: Understand the Problem -- Chapter 5: Manage the Problem -- Chapter 6: Get Ready for Measures -- Chapter 7: Measure the Problem -- Chapter 8: Report Upward -- Chapter 9: Questions Boards Should Ask -- Chapter 10: Conclusion -- Appendix.
520 $a When it comes to managing cybersecurity in an organization, most organizations tussle with basic foundational components. This practitioner's guide lays down those foundational components, with real client examples and pitfalls to avoid. A plethora of cybersecurity management resources are available-many with sound advice, management approaches, and technical solutions-but few with one common theme that pulls together management and technology, with a focus on executive oversight. Author Ryan Leirvik helps solve these common problems by providing a clear, easy-to-understand, and easy-to-deploy "playbook" for a cyber risk management approach applicable to your entire organization. This second edition provides tools and methods in a straight-forward, practical manner to guide the management of a cybersecurity program. Expanded sections include the critical integration of cyber risk management into enterprise risk management, the important connection between a Software Bill of Materials and Third-party Risk Programs, and additional "how to" tools and material for mapping frameworks to controls. Praise for Understand, Manage, and Measure Cyber Risk What lies ahead of you in the pages of this book? Clean practicality, not something that just looks good on paper-brittle and impractical when exposed to the real world. I prize flexibility and simplicity instead of attempting to have answers for everything and the rigidity that results. This simplicity is what I find valuable within Ryan's book. Tim Collyer, Motorola Solutions It seems that I have found a kindred spirit-a builder who has worked with a wide variety of client CISOs on their programs, gaining a deep understanding of how a successful and sustainable program should be constructed. Ryan's cyber work in the US Department of Defense, his McKinsey & Company consulting, and his advisory and survey work with IANS give him a unique global view of our shared passion. Nicholas J. Mankovich, PhD, MS, CISPP.
650 0 $a Cyber intelligence (Computer security) $v Congresses. $3 1002572
650 0 $a Computer networks $x Security measures. $3 555385
650 1 4 $a Data and Information Security. $3 1365785
650 2 4 $a IT Risk Management. $3 1366666
650 2 4 $a Mobile and Network Security. $3 1211619
710 2 $a SpringerLink (Online service) $3 593884
773 0 $t Springer Nature eBook
856 4 0 $u https://doi.org/10.1007/978-1-4842-9319-5
950 $a Professional and Applied Computing (SpringerNature-12059)