Untitled Document
 
Wednesday, November 19, 2008
 You are here: Publications * CISO Soft Skills   Search
Register or Login for your discount


Register
Forgot Password ?

 Print   
Get a Discount on CISO Soft Skills

SAVE 15%
Off the cover price

CISOHandbook.com members recieve a 15% Discount on our new book CISO Soft Skills. To take advantage of the savings you must be a registered member of this website and logged in.  Registration is FREE and EASY.  So why haven't you done it yet!
 
 
Once you are logged in return to this page.  You will then be able to see, and take advantage of, our discount offer.
 
If you are already a registered member, simply login and you will see the information.   
 Print   
Our New Book Information

CISO Soft Skills
Securing Organizations Impaired by Employee Politics, Apathy, and Intolerant Perspectives

 

 

 

by Ron Collette, Mike Gentile, and Skye Gentile

Book Summary

 

As organizations struggle to implement effective security measures, all too often many focus solely on the tangible elements, such as developing security policies or risk management implementations. While these items are very important, they are only half of the equation necessary to ensure security success.
 
A companion volume to the highly touted CISO Handbook, CISO Soft Skills: Securing Organizations Impaired by Employee Politics, Apathy, and Intolerant Perspectives presents tools that empower security practitioners to identify the intangible negative influencers of security that plague most organizations, and provides further techniques to identify, minimize, and overcome these pitfalls within customized situations.
 
The book begins by explaining how using the wrong criteria to measure security can result in a claim of adequate security when objective assessment demonstrates this not to be the case. The authors instead recommend that organizations measure the success of their efforts using a practical approach that clearly illustrates both the tangible and intangible requirements needed by a healthy security effort.

 

The middle section of the book discusses the root causes that negatively influence both a CISO and an organization’s ability to truly secure itself. These root causes, also known as security constraints, include:

  • Employee apathy
  • Employee myopia or tunnel vision
  • Employee primacy, often exhibited as office politics
  • The infancy of the information security discipline

These chapters explain what a CISO can do about these security constraints, providing numerous practical and actionable exercises, tools, and techniques to identify, limit, and compensate for the influence of security constraints in any type of organization.

 

The final chapters discuss some proactive techniques that CISOs can utilize to effectively secure challenging work environments. Reflecting the experience and solutions of those that are in the trenches of modern organizations, this volume provides practical ideas that can make a difference in the daily lives of security practitioners.

 

Features:

  • Presents tools to help identify the intangible negative influencers of security that plague most organizations
  • Provides tangible techniques to identify, minimize, and overcome these items within an organization’s own customized situation
  • Offers actionable solutions for identification, remediation or compensation of constraints that hinder a security program
  • Introduces the R.E.A.P. Security Success Model (Relate, Educate, Appraise and Act, and Poise)
  • Employs research and survey data to support recommendations

Chapter Contents

  • What’s Not Right
  • True Security Model
  • Apathy
  • Myopia
  • Primacy
  • Infancy
  • Tying It All Together
  • Closing Thoughts
  • Appendices
  • Exercises
  • REAP Templates

  
 Print   
Symantec Luncheon
 Print   
Coming Soon!
 Print   
 
Premium Sponsors
Traxx Consulting
 Print   
Gold Sponsors
Computer Economics
MIS
IST
S&T
Secureworld Expo
 Print   
Advertise With Us
Advertising Banner
 Print   
 
 
   Privacy Statement  |  Terms Of Use
Copyright (c) 2008 CISO/CSO Handbook