The Information Security Practitioner's Guide to Business, Management & Strategy (Paperback)

An in-depth guide to management and strategy essentials for information security professionals, complete with proven management practices and hard-learned lessons from security's top professionals The Information Security Practitioner's Guide to Business, Management & Strategy provides IT security professionals with an actionable, rock-solid foundation in security strategy and management techniques--from an overview of the common problems facing most IT organizations to management tips and approaches that utilize the best practices for building effective information security programs. The book is chock-full of case examples, personal anecdotes, real-world professional advice, and detailed walk-throughs of effective business practices, terminology, and strategic action plans to benefit professionals in security--from the service desk to the board room. Teaches business smarts to IT practitioners Reveals how to think like key stakeholders, evaluate what's important to decision makers, and understand how to influence partners and colleagues in order to solve security challenges Features proven, real-world methods for solving problems faced daily by anyone working in IT, such as how to overcome de-prioritization of patch management, risk modeling, and obtaining incremental budgets mid-year or in the face of budget cuts Contains essential business terms, methodologies, and theories are all related to IT and security--bridging the communication gap between IT staff and business stakeholders Covers critical business skills such as presentation skills that can give you an edge over other staff competing for the same resources and budget Discusses working with and auditing vendors