Download or read book IT Risk Management: High-impact Strategies - What You Need to Know written by Kevin Roebuck and published by Tebbo. This book was released on 2011 with total page 614 pages. Available in PDF, EPUB and Kindle. Book excerpt: IT risk management is the application of risk management to Information technology context in order to manage IT risk i.e. the business risk associated with the use, ownership, operation, involvement, influence and adoption of IT within an enterprise. IT risk management can be considered a component of a wider Enterprise risk management system. Different methodologies exist to manage IT risks, each of them divided in processes and steps. This book is your ultimate resource for IT Risk Management. Here you will find the most up-to-date information, analysis, background and everything you need to know. In easy to read chapters, with extensive references and links to get you to know all there is to know about IT Risk Management right away, covering: IT risk management, Asset (computer security), Business continuity, CESG Listed Advisor Scheme, Contingency plan, Disaster recovery, Granular Configuration Automation, HMG Infosec Standard No.1, Incident response team, Information assurance, IT risk, Joint Services Publication 440, Risk IT, Computer security, Portal: Computer security, 2009 Sidekick data loss, AAFID, Absolute Manage, Accelops, Acceptable use policy, Access token, Advanced Persistent Threat, Air gap (networking), Ambient authority, Anomaly-based intrusion detection system, Application firewall, Application security, Attack (computer), AutoRun, Blacklist (computing), Blue Cube Security, BlueHat, Centurion guard, Client honeypot, Cloud computing security, Collaboration-oriented architecture, Committee on National Security Systems, Computer Law and Security Report, Computer security compromised by hardware failure, Computer security incident management, Computer security model, Computer surveillance, Confused deputy problem, Countermeasure (computer), CPU modes, Crackme, Cross-site printing, CryptoRights Foundation, CVSS, Control system security, Cyber security standards, Cyber spying, Cyber Storm Exercise, Cyber Storm II, Cyberheist, Dancing pigs, Data breach, Data loss prevention software, Data validation, Digital self-defense, Dolev-Yao model, DREAD: Risk assessment model, Dynamic SSL, Economics of security, Enterprise information security architecture, Entrust, Evasion (network security), Event data, Federal Desktop Core Configuration, Federal Information Security Management Act of 2002, Flaw hypothesis methodology, Footprinting, Forward anonymity, Four Horsemen of the Infocalypse, Fragmented distribution attack, Higgins project, High Assurance Guard, Host Based Security System, Human-computer interaction (security), Inference attack, Information Assurance Vulnerability Alert, Information security, Information Security Automation Program, Information Security Forum, Information sensitivity, Inter-Control Center Communications Protocol, Inter-protocol communication, Inter-protocol exploitation, International Journal of Critical Computer-Based Systems, Internet leak, Internet Security Awareness Training, Intrusion detection system evasion techniques, Intrusion prevention system, Intrusion tolerance, IT baseline protection, IT Baseline Protection Catalogs, ITHC, Joe-E, Kill Pill, LAIM Working Group, Layered security, Likejacking, Linked Timestamping, Lock-Keeper, MAGEN (security), Mandatory Integrity Control, Mayfield's Paradox, National Cyber Security Awareness Month, National Vulnerability Database, Neurosecurity, Nobody (username), Non-repudiation, Novell Cloud Security Service, One-time authorization code, Opal Storage Specification, Open security, Outbound content security, Parasitic computing, Parkerian Hexad, Phoraging, Physical access, Polyinstantiation, Portable Executable Automatic Protection...and much more This book explains in-depth the real drivers and workings of IT Risk Management. It reduces the risk of your technology, time and resources investment decisions by enabling you to compare your understanding of IT Risk Management with the objectivity of experienced professionals.