ARN

Information Systems Security: A Management Challenge

The real threat to information system security comes from people, not computers. That's why students need to understand both the technical implementation of security controls, as well as the softer human behavioral and managerial factors that contribute to the theft and sabotage proprietary data.

Addressing both the technical and human side of IS security, Dhillon's Princliples of Information Systems Security: Texts and Cases equips managers (and those training to be managers) with an understanding of a broad range issues related to information system security management, and specific tools and techniques to support this managerial orientation. Coverage goes well beyond the technical aspects of information system security to address formal controls (the rules and procedures that need to be established for bringing about success of technical controls), as well as informal controls that deal with the normative structures that exist within organizations.

Biography

Gurpreet Dhillon is a Professor of Information Systems in the School of Business, Virginia Commonwealth University, Richmond, USA. He is the Editor-in-Chief of the Journal of Information System Security, is the North American Regional Editor of the International Journal of Information Management, and sits on the editorial board of MISQ Executive.

Table of Contents

Preface.

Chapter 1. Information System Security: Nature and Scope.

PART I: TECHNICAL ASPECTS OF INFORMATION SYSTEM SECURITY.

Chapter 2. Security of Technical Systems in Organizations: an introduction.

Chapter 3. Models for Technical Specification of Information System Security.

Chapter 4. Cryptography and Technical Information System Security.

Chapter 5. Network Security.

PART II: FORMAL ASPECTS OF INFORMATION SYSTEM SECURITY.

Chapter 6. Security of Formal Systems in Organizations: an introduction.

Chapter 7. Planning for Information System Security.

Chapter 8. Designing Information System Security.

Chapter 9. Information System Risk Management.

PART III: INFORMAL ASPECTS OF INFORMATION SYSTEM SECURITY.

Chapter 10. Security of Informal Systems in Organizations: an introduction.

Chapter 11. Corporate Governance for IS Security.

Chapter 12. Culture and IS Security.

PART IV: REGULATORY ASPECTS OF INFORMATION SYSTEM SECURITY.

Chapter 13. Information System Security Standards.

Chapter 14. Legal Aspects of IS Security.

Chapter 15. Computer Forensics.

Chapter 16. Summary principles for Information System Security.

CASES.

Case 1: Case of a Computer Hack.

Case 2: Botnet: Anatomy of a Case.

Case 3: Cases in Computer Crime.

Case 4: IS Security at Southam Council.

Case 5: Security Management at the Tower.

Case 6: Computer crime and the demise of Barings Bank.

Case 7: Technology Enabled Fraud and the Demise of Drexel Burnham Lambert.

Case 8: It won’t part you hair: the INSLAW Affair.

Case 9: Taylor City Police Department Security Breach.

Case 10: Developing a Security Policy at M & M Procurement, Inc.

Index.

rhs_login_lockGet exclusive access to ARN's news, research and invitation only events.
ARN Distributor Directory
Find distributors by name | vendor | location
Channel Deals
/deals/synnex/2012-02-09_424_lenovo-february-march-hot-deal-2
Synnex

Lenovo February & March Hot Deal 2

More details »
ARN Vendor Directory
Find vendors by name | category

iAsset is a channel management ecosystem that automates all major aspects of the entire sales,marketing and service process, including data tracking, integrated learning, knowledge management and product lifecycle management.