Zum Hauptinhalt springen
Dekorationsartikel gehören nicht zum Leistungsumfang.
Information Security and Employee Behaviour
How to Reduce Risk Through Employee Education, Training and Awareness
Taschenbuch von Angus McIlwraith
Sprache: Englisch

59,95 €*

inkl. MwSt.

Versandkostenfrei per Post / DHL

Lieferzeit 1-2 Wochen

Kategorien:
Beschreibung
Research conducted over many years suggests that between 60 and 85 per cent of all information security incidents are the result of a lack of knowledge and/or understanding amongst an organisation's own people. And yet the great majority of money spent protecting systems is focused on creating technical defences against often exaggerated external threats. Angus McIlwraith's book explains how corporate culture affects perceptions of risk and information security, and how this in turn affects employee behaviour. He then provides a pragmatic approach for educating and training employees in information security and explains how different metrics can be used to assess awareness and behaviour. Information security awareness will always be an ongoing struggle against complacency, problems associated with new systems and technology, and the challenge of other more glamorous and often short-term priorities. Information Security and Employee Behaviour will help you develop the capability and culture that will enable your organisation to avoid or reduce the impact of unwanted security breaches.

This second edition has been thoroughly updated throughout, incorporating other areas like anthropology and other non-technical disciplines which are making an impact on recent developments. It also explores the technology used to deliver communication, education and awareness, particularly in the areas of online delivery and recent developments such as 'gamification', as well as the ways in which the research, tools, techniques and methodologies relating to the measurement and change of organisational culture have matured.
Research conducted over many years suggests that between 60 and 85 per cent of all information security incidents are the result of a lack of knowledge and/or understanding amongst an organisation's own people. And yet the great majority of money spent protecting systems is focused on creating technical defences against often exaggerated external threats. Angus McIlwraith's book explains how corporate culture affects perceptions of risk and information security, and how this in turn affects employee behaviour. He then provides a pragmatic approach for educating and training employees in information security and explains how different metrics can be used to assess awareness and behaviour. Information security awareness will always be an ongoing struggle against complacency, problems associated with new systems and technology, and the challenge of other more glamorous and often short-term priorities. Information Security and Employee Behaviour will help you develop the capability and culture that will enable your organisation to avoid or reduce the impact of unwanted security breaches.

This second edition has been thoroughly updated throughout, incorporating other areas like anthropology and other non-technical disciplines which are making an impact on recent developments. It also explores the technology used to deliver communication, education and awareness, particularly in the areas of online delivery and recent developments such as 'gamification', as well as the ways in which the research, tools, techniques and methodologies relating to the measurement and change of organisational culture have matured.
Über den Autor

Angus McIlwraith has worked in the field of Information Security and Business Control for over 35 years. He has for many years held (and broadcast) the view that Information Security is not making the best use of time and resources by failing to address some fundamental issues. By not doing so, time and money are wasted; in some extreme circumstances, lives are being put at risk unnecessarily. Angus' professional experience was gained mainly in Financial Services and UK central government. He has worked for Lloyds Bank, American Express, NatWest Bank and Standard Life, as well as working as a consultant to a wide range of international organisations. He has spoken at many conferences, including numerous Information Security Forum (ISF) Congresses, the London-based COMPSEC conference, the Institute of Internal Auditors annual conference and the British Computer Society Information Security Specialist Group (BCS ISSG). Angus was an elected Member of the ruling Council of the ISF for eight years and was a member of the UK-based Banking Information Security Expert Panel (BISEP). He writes regularly for many publications. He held a monthly column in Information Security Management magazine, and provided a monthly piece in Secure Computing magazine for many years.

Inhaltsverzeichnis

Introduction Part I: A Framework For Understanding 1. Employee Risk 2. Security Culture 3. How Are We Perceived? Part II: A Framework For Implementation 4. Practical Strategies and Techniques 5. Measuring Awareness 6. Delivery Media and Graphic Design

Details
Erscheinungsjahr: 2021
Fachbereich: Allgemeines
Genre: Importe, Wirtschaft
Rubrik: Recht & Wirtschaft
Medium: Taschenbuch
ISBN-13: 9781032055916
ISBN-10: 103205591X
Sprache: Englisch
Ausstattung / Beilage: Paperback
Einband: Kartoniert / Broschiert
Autor: McIlwraith, Angus
Auflage: 2. Auflage
Hersteller: Routledge
Verantwortliche Person für die EU: Books on Demand GmbH, In de Tarpen 42, D-22848 Norderstedt, info@bod.de
Maße: 234 x 156 x 12 mm
Von/Mit: Angus McIlwraith
Erscheinungsdatum: 23.08.2021
Gewicht: 0,327 kg
Artikel-ID: 128038655
Über den Autor

Angus McIlwraith has worked in the field of Information Security and Business Control for over 35 years. He has for many years held (and broadcast) the view that Information Security is not making the best use of time and resources by failing to address some fundamental issues. By not doing so, time and money are wasted; in some extreme circumstances, lives are being put at risk unnecessarily. Angus' professional experience was gained mainly in Financial Services and UK central government. He has worked for Lloyds Bank, American Express, NatWest Bank and Standard Life, as well as working as a consultant to a wide range of international organisations. He has spoken at many conferences, including numerous Information Security Forum (ISF) Congresses, the London-based COMPSEC conference, the Institute of Internal Auditors annual conference and the British Computer Society Information Security Specialist Group (BCS ISSG). Angus was an elected Member of the ruling Council of the ISF for eight years and was a member of the UK-based Banking Information Security Expert Panel (BISEP). He writes regularly for many publications. He held a monthly column in Information Security Management magazine, and provided a monthly piece in Secure Computing magazine for many years.

Inhaltsverzeichnis

Introduction Part I: A Framework For Understanding 1. Employee Risk 2. Security Culture 3. How Are We Perceived? Part II: A Framework For Implementation 4. Practical Strategies and Techniques 5. Measuring Awareness 6. Delivery Media and Graphic Design

Details
Erscheinungsjahr: 2021
Fachbereich: Allgemeines
Genre: Importe, Wirtschaft
Rubrik: Recht & Wirtschaft
Medium: Taschenbuch
ISBN-13: 9781032055916
ISBN-10: 103205591X
Sprache: Englisch
Ausstattung / Beilage: Paperback
Einband: Kartoniert / Broschiert
Autor: McIlwraith, Angus
Auflage: 2. Auflage
Hersteller: Routledge
Verantwortliche Person für die EU: Books on Demand GmbH, In de Tarpen 42, D-22848 Norderstedt, info@bod.de
Maße: 234 x 156 x 12 mm
Von/Mit: Angus McIlwraith
Erscheinungsdatum: 23.08.2021
Gewicht: 0,327 kg
Artikel-ID: 128038655
Sicherheitshinweis