Assessing Information Security: Strategies, Tactics, Logic and Framework

Fighting cybercrime is about more than bureaucracy and compliance. A key objective of any information security assessment is to ensure that the relevant policies are not just treated by the staff as a formality. Your company's approach to information security has to be integrated with your overall business goals. To protect your sensitive information and systems, you must avoid a fortress mentality and be capable of adapting to an ever-changing environment. This means you need to plan an effective strategy for deterring the cybercriminal. Assessing Information Security deals with the philosophy, strategy and tactics of soliciting, managing and conducting information security audits of all flavours. It will give you the founding principles around information security assessments and why they are important. The book provides a fluid framework for developing an astute 'information security mind' capable of rapid adaptation to evolving technologies, markets, regulations, laws, and so on. The authors, Dr Andrew Vladimirov, Konstantin Gavrilenko and Andriej Michajlowski, are information security experts.
They are the joint founders of Arhont Ltd, a consultancy which offers a range of information security services, including auditing, monitoring and investigation. Arhont provides advice on information security to major companies and multinational corporations.