Security Governance

Artificial Intelligence (AI) is causing massive changes in our lives, both at the individual and societal level, with the global AI market expected to reach around 126 billion US dollars by 2025. As more and more decision-making moves to AI systems, unique risks are being introduced. However, this topic can be quite challenging for newcomers who want to understand the governance and cyber-security risks that AI introduces. This book assumes zero prior knowledge of AI or machine learning and explains in an easy-to-understand way how to govern and secure AI.

This audiobook is a comprehensive cyber security implementation manual which gives practical guidance on the individual activities identified in the IT Governance Cyber Resilience Framework (CRF) that can help organisations become cyber resilient and combat the cyber threat landscape.

We’re often told that disinformation is everywhere and that it’s endangering our democracy. But what if the war on disinformation itself is really just a weapon to squash any and all legitimate dissent? This program is read by the author. The Information State is an incisive examination of...

Currently used by more than 1.1 million organizations worldwide, the international standard ISO 9001:2015 is the world’s most established quality framework. ISO 9001:2015 - A Pocket Guide is a handy reference audiobook that provides an overview of the ISO 9001 quality management standard.

Based on insights gained from academic research, as well as interviews with UK-based security professionals from various sectors, The Psychology of Information Security describes how resolving conflicts between security compliance and human behavior explains the importance of careful risk management and how to align a security program with wider business objectives, providing methods and techniques to engage stakeholders and encourage buy-in.

Discover the Secrets of Cybersecurity Governance, Risk, and Compliance with Cybersecurity Fundamentals: Governance, Risk & Compliance by Bruce Brown, CISSP, CGRC. In the ever-evolving world of cybersecurity, understanding the intricacies of Governance, Risk, and Compliance (GRC) is not just beneficial—it's essential. Despite being one of the most crucial areas in cybersecurity, GRC is often overlooked, leaving many professionals unprepared for the challenges ahead. This book changes that narrative.

A compendium of essential information for the modern security entrepreneur and practitioner. This audiobook provides essential direction for those who want to succeed in security, either individually or as part of a team. It also aims to stimulate some fresh ideas and provide new market routes for security professionals who may feel they are underappreciated and overexerted in traditional business domains.

Cyberspace, the Internet, computer networks, the digital world - call it what you will - is always developing. So are the threats and risks of being online. Security in the Digital World explains the common digital threats to home users, home offices, mobile users, consumers, and parents alike, as well as providing tips, advice, and guidance.

Success in war ultimately depends on the consolidation of political order. Nadia Schadlow argues that the steps needed to consolidate a new political order are not separate from war. They are instead an essential component of war and victory.

Written by an acknowledged expert on the ISO/IEC 27001 standard, ISO 27001: 2022–An Introduction to Information Security and the ISMS Standard is an ideal primer for anyone implementing an information security management system aligned to ISO 27001: 2022.

In our digital age, where threats can come from any corner of the globe and impact businesses of all sizes, I believe in a proactive, multi-layered approach. I am passionate about empowering businesses and individuals to understand cyber risks. Effective IT governance establishes frameworks that guide decision-making, risk management, and resource allocation to support high-quality care while safeguarding patient data. Compliance helps mitigate threats, enhance operational efficiency, and maintain the integrity and confidentiality of healthcare data.

This audiobook recounts case studies to show the types of threats we face and provides a comprehensive coverage of risk management tactics and strategies to protect yourself against such nefarious threat actors. These include key mitigation and controls for information security or security and HR-related professionals.

The Framers created a form of government they labelled a “republic.” This author calls it a “republic monarchy” because the people who own the nation were given zero power to change anything in government. All they can do is vote for or against the elite monarchs who run it. This book reviews how we got there, the turmoil that has resulted, and what is recommended be done to achieve government excellence. Self-government by The People is advocated, with the strategy of achieving government decision-making excellence under their control.

It is estimated that standard computer-based defense systems catch only 25 percent of malware attacks. Do you know the risks you’re running online? Are you protected? An Introduction to Hacking and Crimeware answers your concerns and provides a foundation-level overview of the dark world of cybercrime. This is a comprehensive guide to more serious online threats. Knowledge of these threats will help you understand how to ensure that your computer systems are protected and make sure that your business is safe, enabling you to focus on your core activities without fear of attack.

Now in its third edition, Nine Steps to Success has been completely updated to reflect the implementation methodology used by IT Governance consultants in hundreds of successful ISMS implementations around the world and covers each element of the ISO 27001 project in simple, nontechnical language. If you’re tackling ISO 27001 for the first time, Nine Steps to Success will give you the guidance you need to get to grips with the Standard’s requirements and ensure your implementation project is a success - from inception to certification.

A concise introduction to the NIST CSF 2.0The NIST CSF (Cybersecurity Framework) 2.0 is designed to protect organizations from cyber attacks. Although the CSF was developed to help US organizations involved in infrastructure to systematically organize their critical activities and ensure they remain up to date, Version 2.0 states that “The CSF is designed to be used by organizations of all sizes and sectors, including industry, government, academia, and nonprofit organizations, regardless of the maturity level of their cybersecurity programs.”

We live in a world where technology and vast quantities of data play a considerable role in everyday life, both personal and professional. For the foreseeable future (and perhaps beyond), the growth and prominence of data in business shows no signs of slowing down, even if the technology in question will likely change in ways perhaps unimaginable today. Naturally, all this innovation brings huge opportunities and benefits to organizations and people alike. However, these come at more than just a financial cost.

Every year, thousands of computer systems in the UK are compromised. The majority fall victim to easily preventable cyberattacks, carried out with tools that are freely available on the Internet. Cyber Essentials is the UK government's reaction to the proliferation of these attacks. It requires that organizations put basic security measures in place, enabling them to reliably counter the most common tactics employed by cybercriminals. This guide explains how to achieve certification to Cyber Essentials in a fast, effective, and cost-effective manner.