Securing an IT Organization through Governance, Risk Management, and Audit
Author | : Ken E. Sigler |
Publisher | : CRC Press |
Total Pages | : 239 |
Release | : 2016-01-05 |
ISBN-13 | : 9781040070956 |
ISBN-10 | : 1040070957 |
Rating | : 4/5 (57 Downloads) |
Download or read book Securing an IT Organization through Governance, Risk Management, and Audit written by Ken E. Sigler and published by CRC Press. This book was released on 2016-01-05 with total page 239 pages. Available in PDF, EPUB and Kindle. Book excerpt: This book introduces two internationally recognized bodies of knowledge: COBIT 5 from a cybersecurity perspective and the NIST Framework for Improving Critical Infrastructure Cybersecurity (CSF). Emphasizing the processes directly related to governance, risk management, and audit, the book maps the CSF steps and activities to the methods defined in COBIT 5, extending the CSF objectives with practical and measurable activities that leverage operational risk understanding in a business context. This allows the ICT organization to convert high-level enterprise goals into manageable, specific goals rather than unintegrated checklist models.