Robert M. Slade
... This is definitely not your standard security
textbook. It is extremely demanding of the reader, but will amply
repay the effort put into using the volume. And I say "using," rather
than merely "reading": ... Bed-time reading it is not.
This is not a primer to be read quickly in one sitting. The
illustrations are dense, and so is the text, but dense with meaning
and import. This is a work to be worked through, a page or even a
paragraph at a time. And then, when you are finished, work through it
again. If you are a CISO it won't teach you anything--but it will
remind you of things, practices, and procedures that have possibly
been forgotten in the press of other urgencies. This volume becomes,
therefore, an aide memoire for the strategic planning of information
protection.
This is not to say that there are no details provided. Section three,
entitled "Drill Down," provides greater depth to a number of the areas
(one example is an intriguing use of the human life span to address
personnel and human resources issues). The content does not deal with
specific technical areas of security, but does provide a very solid
overview of security management--or, if you prefer, governance.
This is a handy and useful guide for those in the CISO position. It
is destined to become well-thumbed, dirty, and dog-eared, over time.
Those who are not yet into a CISO job will not recognize all of the
value in its pages, yet. However, those who aspire to the calling
would do well to get a start on learning from it.
For single copies, you can buy here. For classroom use and in quantity, discounts are available. Please contact us for additional details.