Internet Archive Scholar

A year affair with security

Laurence Holt
2006 Proceedings of the 3rd annual conference on Information security curriculum development - InfoSecCD '06  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (226.4 kB)
https://web.archive.org/web/20170808232046/https://people.eecs.ku.edu/~hossein/Teaching/Sp12/711/Readings/sec-program-dev.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2017; you can also visit the original URL. The file type is application/pdf.

Development of a security program is a complex task but adaptation of standard models and procedures can simplify the task. The challenge is to make the program complex enough that it protects all the areas of risk but simple enough to be comprehensible and acceptable by non-security management and employees. A model for a corporate risk profile and a variant of the McCumber cube are offered. A program methodology of define, control, monitor is explained. These areas are explored in the context
more » ... of a new security manager developing an information security program for a large, global corporation.
doi:10.1145/1231047.1231076 dblp:conf/infoseccd/Holt06 fatcat:3alcwlutjncttozmvkxsobiq3i
Citation

Laurence Holt. "A year affair with security." Proceedings of the 3rd annual conference on Information security curriculum development - InfoSecCD '06 (2006) 130-135