Risks, Controls, and Security: Concepts and Applications, 1st Edition
January 2007, ©2007
Throughout the book, several pedagogical features, including discussion questions, short exercises, and cases, give students the opportunity to solve real-world problem scenarios and help them become familiar with the most current challenges in protecting information assets.
The book is appropriate for advanced undergraduate level and introductory graduate level courses in Accounting, Accounting Information Systems, Management / Computer Information Systems and Computer Science.
1. Enterprise Risk Management.
2. Information Systems Concerns and Risks.
3. Control and Security Frameworks.
4. Systems Availability and Business Continuity.
5. Basic Cryptography.
6. Public Key Infrastructure.
7. Operating Systems Security.
8. Application Security.
9. Database Management Systems Security.
10. Telecommunications Security.
11. Network Security.
12. Web Security.
13. Policy, Regulation, and Ethics.
• All chapters include several real world examples of “Security in Practice”.
• Primer on relevant technology is provided in chapters discussing complex areas of risk and controls.
• “Concept Maps” throughout the book provide a common visual thread to better integrate relevant concepts.
• Balanced discussions of technical and managerial content.
• Key concepts are communicated clearly
• Focus on security principles and issues for all businesses, including e-businesses.