Anne Kohnke, PhD, is an assistant professor of IT at Lawrence Technological University and teaches courses in both the information technology and organization development/change management disciplines at the bachelor through doctorate levels. Anne started as an adjunct professor in 2002 and joined the faculty full time in 2011. Her IT career started in the mid-1980s on a help desk, and over the years, Anne developed technical proficiency as a database administrator, network engineer, systems analyst, and technical project manager. After a decade, Anne was promoted to management and worked as an IT director, vice president of IT and chief information security officer (CISO). Her research focuses on cybersecurity, risk management, IT governance, and security countermeasures. Anne earned her PhD from Benedictine University. Daniel P. Shoemaker, PhD, is principal investigator and senior research scientist at the University of Detroit Mercy's Center for Cyber Security and Intelligence Studies. Dan has served 30 years as a professor at UDM with 25 of those years as department chair. He served as a co-chair for both the Workforce Training and Education and the Software and Supply Chain Assurance Initiatives for the Department of Homeland Security, and was a subject matter expert for the NICE Cybersecurity Workforce Framework 2.0. Dan has coauthored six books in the field of cybersecurity and has authored more than one hundred journal publications. Dan earned his PhD from the University of Michigan. Ken Sigler, MS, is a faculty member of the Computer Information Systems (CIS) program at the Auburn Hills campus of Oakland Community College in Michigan. His primary research is in the areas of software management, software assurance, and cloud computing. He developed the college's CIS program option entitled "Information Technologies for Homeland Security." Until 2007, Ken served as the liaison for the college to the International Cybersecurity Education Coalition (ICSEC), of which he is one of three founding members. Ken is a member of IEEE, the Distributed Management Task Force (DMTF), and the Association for Information Systems (AIS).
--此文字指其他
kindle_edition 版本。
Why Cybersecurity Management Is Important Computing and Culture Shock Chapter Summary Key Concepts Key Terms References Control-Based Information Governance, What It Is and How It Works The Value of Formal Control Chapter Summary Key Concepts Key Terms References A Survey of Control Frameworks, General Structure, and Application What Is Information Security Governance? IT Governance Frameworks-An Overview IT Security Controls Chapter Summary Key Terms References What Are Controls and Why Are They Important? Picking Up Where Chapter 1 Left Off Goal-Based Security Controls Implementation-Based Security Controls The Security Control Formulation and Development Process Setting the Stage for Control Implementation through Security Architecture Design Chapter Summary Key Terms References Implementing a Multitiered Governance and Control Framework in a Business Constructing Practical Systems of Controls Practical Implementation: How to Establish a Real, Working Control Framework Ensuring Long-Term Control Capability Chapter Summary Key Concepts Key Terms References Risk Management and Prioritization Using a Control Perspective Ensuring that Risk Management Process Supports the Organization The Five Elements of the Risk Management Process Chapter Summary Key Concepts Key Terms Control Formulation and Implementation Process The Control Formulation Process Creating and Documenting Control Objectives Creating a Management-Level Control Process Assessing Control Performance Measurement-Based Assurance of Controls Assessing and Remediating the Control Environment Developing a Comprehensive ICT Control Program Chapter Summary Key Concepts Key Terms Security Control Validation and Verification Security Control Assessment Fundamentals NIST Security Control Assessment Process Control Testing and Examination Application Chapter Summary Key Terms References Control Framework Sustainment and Security of Operations Operational Control Assurance: Aligning Purpose with Practice Operational Assurance (Sensing) Analysis Response Management (Responding) Operational Oversight and Infrastructure Assurance of Control Set Integrity Chapter Summary Key Concepts Key Terms
--此文字指其他
kindle_edition 版本。
![“The Complete Guide to Cybersecurity Risks and Controls (Internal Audit and IT Audit) (English Edition)”,作者:[Anne Kohnke, Dan Shoemaker, Ken E. Sigler]](https://images-cn.ssl-images-amazon.cn/images/I/51JZ72nOlTL._SY346_.jpg)
%2520(English%2520Edition)%2520%25E4%25BD%259C%25E8%2580%2585%2520Anne%2520Kohnke%2520%25EF%25BC%258C%25E7%258B%25AC%25E4%25B9%2590%25E4%25B9%2590%25E4%25B8%258D%25E5%25A6%2582%25E4%25BC%2597%25E4%25B9%2590%25E4%25B9%2590%25EF%25BC%2581%25E5%2588%2586%25E4%25BA%25AB%25E7%25BB%2599%25E5%25A4%25A7%25E5%25AE%25B6%25E3%2580%2582%26desc%3D%25E5%25BE%2597%25E6%259D%25A5%25E5%2585%25A8%25E4%25B8%258D%25E8%25B4%25B9%25E5%25B7%25A5%25E5%25A4%25AB~%25E6%2588%2591%25E5%259C%25A8%25E4%25BA%259A%25E9%25A9%25AC%25E9%2580%258AZ.cn%2520%25E6%2589%25BE%25E5%2588%25B0%25E4%25BA%2586%2520The%2520Complete%2520Guide%2520to%2520Cybersecurity%2520Risks%2520and%2520Controls%2520(Internal%2520Audit%2520and%2520IT%2520Audit)%2520(English%2520Edition)%2520%25E4%25BD%259C%25E8%2580%2585%2520Anne%2520Kohnke%2520%25EF%25BC%258C%25E7%258B%25AC%25E4%25B9%2590%25E4%25B9%2590%25E4%25B8%258D%25E5%25A6%2582%25E4%25BC%2597%25E4%25B9%2590%25E4%25B9%2590%25EF%25BC%2581%25E5%2588%2586%25E4%25BA%25AB%25E7%25BB%2599%25E5%25A4%25A7%25E5%25AE%25B6%25E3%2580%2582%26url%3Dhttps%253A%252F%252Fwww.amazon.cn%252Fdp%252FB01DLRHV0U%252Fref%253Dcm_sw_r_qq_dp_tw1bGbK5J4AM0%26pics%3Dhttps%253A%252F%252Fimages-cn.ssl-images-amazon.com%252Fimages%252FI%252F51JZ72nOlTL.jpg%26site%3DAmazon&token=3F1B650D8DA214DC5565475FBE111BDA25AF4962){kind=link}
%2520(English%2520Edition)%2520%25E4%25BD%259C%25E8%2580%2585%2520Anne%2520Kohnke%2520%25E3%2580%2582%26pic%3Dhttps%253A%252F%252Fimages-cn.ssl-images-amazon.com%252Fimages%252FI%252F51JZ72nOlTL.jpg%26url%3Dhttps%253A%252F%252Fwww.amazon.cn%252Fdp%252FB01DLRHV0U%252Fref%253Dcm_sw_r_si_dp_tw1bGbK5J4AM0%26appkey%3D620381579%26ralateUid%3D1732523361&token=C90552ABDE37B64A6F34FA120E68E3CDDD17A5CD){kind=link}
%2520(English%2520Edition)%2520%25E4%25BD%259C%25E8%2580%2585%2520Anne%2520Kohnke%26title%3D%25E6%2588%2591%25E5%258F%25AA%25E8%25B4%25AD%25E4%25B9%25B0The%2520Complete%2520Guide%2520to%2520Cybersecurity%2520Risks%2520and%2520Controls%2520(Internal%2520Audit%2520and%2520IT%2520Audit)%2520(English%2520Edition)%2520%25E4%25BD%259C%25E8%2580%2585%2520Anne%2520Kohnke%26pics%3Dhttps%253A%252F%252Fimages-cn.ssl-images-amazon.com%252Fimages%252FI%252F51JZ72nOlTL.jpg%26url%3Dhttps%253A%252F%252Fwww.amazon.cn%252Fdp%252FB01DLRHV0U%252Fref%253Dcm_sw_r_qz_dp_tw1bGbK5J4AM0&token=052B3E16C52455D03C6ACA2C1E956454544B328B){kind=link}
