The Security Risk Assessment Handbook

The Security Risk Assessment Handbook

Author: Douglas Landoll

Publisher: CRC Press

Published: 2021-09-27

Total Pages: 515

ISBN-13: 1000413209

DOWNLOAD EBOOK

Conducted properly, information security risk assessments provide managers with the feedback needed to manage risk through the understanding of threats to corporate assets, determination of current control vulnerabilities, and appropriate safeguards selection. Performed incorrectly, they can provide the false sense of security that allows potential threats to develop into disastrous losses of proprietary information, capital, and corporate value. Picking up where its bestselling predecessors left off, The Security Risk Assessment Handbook: A Complete Guide for Performing Security Risk Assessments, Third Edition gives you detailed instruction on how to conduct a security risk assessment effectively and efficiently, supplying wide-ranging coverage that includes security risk analysis, mitigation, and risk assessment reporting. The third edition has expanded coverage of essential topics, such as threat analysis, data gathering, risk analysis, and risk assessment methods, and added coverage of new topics essential for current assessment projects (e.g., cloud security, supply chain management, and security risk assessment methods). This handbook walks you through the process of conducting an effective security assessment, and it provides the tools, methods, and up-to-date understanding you need to select the security measures best suited to your organization. Trusted to assess security for small companies, leading organizations, and government agencies, including the CIA, NSA, and NATO, Douglas J. Landoll unveils the little-known tips, tricks, and techniques used by savvy security professionals in the field. It includes features on how to Better negotiate the scope and rigor of security assessments Effectively interface with security assessment teams Gain an improved understanding of final report recommendations Deliver insightful comments on draft reports This edition includes detailed guidance on gathering data and analyzes over 200 administrative, technical, and physical controls using the RIIOT data gathering method; introduces the RIIOT FRAME (risk assessment method), including hundreds of tables, over 70 new diagrams and figures, and over 80 exercises; and provides a detailed analysis of many of the popular security risk assessment methods in use today. The companion website (infosecurityrisk.com) provides downloads for checklists, spreadsheets, figures, and tools.


ITAMOrg® Software Asset Management Specialist Courseware

ITAMOrg® Software Asset Management Specialist Courseware

Author: Jesper Østergaard

Publisher: Van Haren

Published: 2020-10-22

Total Pages: 365

ISBN-13: 9401807213

DOWNLOAD EBOOK

ITAMOrg® IT Software Asset Management Certifications is suitable for individuals wanting to demonstrate they have achieved sufficient understanding of how to apply and tailor the Software Asset Management practices. Changing business practices, the introduction of new technologies, combined with customer and stakeholder feedback led to the need for understanding Software Asset Management disciplines. The ITAMOrg guidance will be easier to navigate and understand the Software Asset Management practical in its approach. The Software Asset Management exam with a fundamental understanding of the SAM elements and equips the participant to focus on the practical skills to apply SAM practices. Key benefits: • ITAM can be successfully applied to any sized organisation, and professional role • ITAM leverages off the real-life expertise of the global ITAMOrg community, offering a overview of the ITAM disciplines and IT Asset areas to be controlled. • The exams highlight real world applications that equip professionals for success in IT Asset Management This Courseware is suited for the ITAMOrg® 2020 SAM exam. There is also a sample exam added of the ITAMOrg® 2020 Software Asset Management in case the participant prefers to refresh its knowledge. The Exam is delivered in English.


ITIL® 2011 Edition - A Pocket Guide

ITIL® 2011 Edition - A Pocket Guide

Author: Jan van Bon

Publisher: Van Haren

Published: 2020-06-11

Total Pages: 193

ISBN-13: 9087539789

DOWNLOAD EBOOK

For trainers free additional material of this book is available. This can be found under the "Training Material" tab. Log in with your trainer account to access the material. Note: This pocket book is available in several languages: English, German, Dutch. Since 2001 the Van Haren Publishing ITIL Pocket Guides have helped readers all over the world to understand the essentials of ITIL (IT Infrastructure Library), the leading framework for IT service management. This pocket guide does exactly the same as previous editions: offering a concise summary of ITIL, based on ITIL® 2011 Edition. We have condensed the full ITIL framework, found in 2000 pages, into just 200 pocket-sized pages! It means that this book is an essential time-saving and cost-effective guide to ITIL 2011 Edition -- for both industry experts and students alike. Primarily it is a quick, portable reference tool to ITIL for all professionals in the service management community. What is the ‘lifecycle’ approach? What are the key service management processes and functions? Secondly the ITIL pocket guide can be used as part of the training material for everyone who wants to certify for the ITIL Foundation exam. The guide contents cover all of the specifications of AXELOS’ ITIL Foundation Certificate syllabus.


Becoming a Supply Chain Leader

Becoming a Supply Chain Leader

Author: Sourya Datta

Publisher: CRC Press

Published: 2021-10-28

Total Pages: 389

ISBN-13: 1000427145

DOWNLOAD EBOOK

The book explains how to emerge and grow as a supply chain leader and details supply chain and procurement processes and operational activities in real-work scenarios across multiple supply chain verticals. The book defines what an entry-level supply chain professional must do to excel in various types of supply chain verticals such as IT, electronics manufacturing, pharmaceutical, retail, and consumer goods. Apart from helping professionals understand vertical specific nuances, this book helps them to set both short-term goals for annual performance review and longer-term career planning. In addition, for a mid- or senior-level supply chain professional, the book offers ideas on ways to launch initiatives and demonstrate leadership to foster career growth. It offers ideas about unlocking new values for the organization and creating a data-driven decision support platform to gain financial efficiency for better management of CapEx and OpEx spend, thus improving the bottom line. The book includes a tool kit which includes operational data models, financial models, and presentation templates for creating and socializing proposals intended for cross-functional teams and demonstrating supply chain leadership. The book is divided into four major parts. In Part I, the book starts with an overview of key concepts in a manufacturing supply chain and procurement organization. It describes current forms of modern global supply chain and corporate procurement organizations. The objective of Part II is to provide a framework for a self-directed supply chain manager to understand how a large organization evaluates the contribution of supply chain managers and where it expects them to create value. To foster career growth as a supply chain professional, the book identifies six key knowledge pillars for demonstrating supply chain mastery: Technical and market knowledge of the end product and its constituents. Knowledge of internal product development and sustaining processes and supporting consumption data. Health and market condition of the supplier. Ability to create value. Ability to build internal and external executive relationships with key influencers. Ability to obtain best cost without compromising on quality and lead time. Negotiating cost, sourcing material, and then the logistics of moving the raw material through multiple stages and finally finished materials across the globe are some of the key areas which need continuous improvement. As a sentinel of efficiency, removing any kind of wastage leads to immediate value creation and contributes to the margin by improving the bottom line. In Part III, the book reviews twelve such verticals namely printer, medical, IT, energy, automotive, cloud, dairy, data management, avionics, biotech, apparel and start up and the supply chain nuances through the lenses of the framework created in Part II. In Part IV, the book goes back to focus on the professional growth of an individual supply chain person in an industry agnostic way. It provides examples of financial and operational efficiencies that a supply chain professional can create.


IT Asset Management Foundation (ITAMF) – Workbook - Second edition

IT Asset Management Foundation (ITAMF) – Workbook - Second edition

Author: Jan Øberg

Publisher: Van Haren

Published: 2020-11-15

Total Pages: 125

ISBN-13: 9401807175

DOWNLOAD EBOOK

IT Asset Management Foundation (ITAMF) is a certification that validates a professional’s knowledge on managing the IT assets as part of an organization’s strategy, compliance and risk management. The content covered by the certification is based upon the philosophy of ITAMOrg, a membership organization and thought leader in IT Asset Management. The certificate IT Asset Management Foundation is part of the ITAMOrg qualification program and has been developed in cooperation with international experts in the field. This workbook will help you prepare for the IT Asset Management Foundation (ITAMF) exam and provides you with an overview of the four key areas of IT Asset Management: • Hardware Asset Management, including ‘mobile devices’; • Software Asset Management; • Services & Cloud Asset Management; • People & Information Asset Management, including ‘Bring Your Own Device’ (BYOD).


The Technology Procurement Handbook

The Technology Procurement Handbook

Author: Sergii Dovgalenko

Publisher: Kogan Page Publishers

Published: 2020-04-03

Total Pages: 329

ISBN-13: 1789662117

DOWNLOAD EBOOK

With the rise of cloud services and the digitization of all business units, procurement managers need to understand how to buy technology services in order to generate revenue, drive innovation and retain customers. The Technology Procurement Handbook provides a structured and logical view of the digital buying process. It includes invaluable advice on how to manage digital demand, prepare sourcing strategies, analyze the cost and benefits of proposed solutions and negotiate and implement comprehensive agreements. The Technology Procurement Handbook examines the multiple streams of data that feed into the technology procurement process, such as ITIL service lifecycle data, PMI project management and cloud and software contract provisions. The book includes case studies and extensive practical advice based on the authors experience from recent procurement projects. There is also a chapter on modular contracting for the US market, explaining the use of agile contracts for IT projects.


ITIL® 4 Essentials: Your essential guide for the ITIL 4 Foundation exam and beyond, second edition

ITIL® 4 Essentials: Your essential guide for the ITIL 4 Foundation exam and beyond, second edition

Author: Claire Agutter

Publisher: IT Governance Ltd

Published: 2020-04-28

Total Pages: 211

ISBN-13: 1787782204

DOWNLOAD EBOOK

ITIL® 4 Essentials contains everything you need to know to pass the ITIL 4 Foundation Certificate, plus more. It covers practices and concepts that are not addressed as part of the Foundation syllabus, making it ideal for newly qualified practitioners. This second edition has been updated to align with amendments to the ITIL® 4 Foundation syllabus.


An It Manager's Guide to Hardware Asset Management

An It Manager's Guide to Hardware Asset Management

Author: Laurence Tindall

Publisher: Independently Published

Published: 2018-11-02

Total Pages: 100

ISBN-13: 9781729316900

DOWNLOAD EBOOK

An IT Manager's Guide to Hardware Asset Management: The perfect guide for implementing an IT Asset Management (ITAM) program. This book will teach you what IT Asset Management is, and how it can substantially benefit your organization. Get a grasp of your IT Assets today and start learning how to effectively organize and manage them. Acquire the knowledge on how to setup up a successful IT Asset Management program from the ground up.This book is aimed towards all IT professionals that seek to learn the skills and fundamentals of Hardware Asset Management.


IT4ITTM for Managing the Business of IT - A Management Guide

IT4ITTM for Managing the Business of IT - A Management Guide

Author: Rob Akershoek Et Al.

Publisher: Van Haren

Published: 1970-01-01

Total Pages: 217

ISBN-13: 9401805938

DOWNLOAD EBOOK

The IT4IT Management Guide provides guidance on how the IT4IT Reference Architecture can be used within an IT organization to manage the business of IT. It is designed to provide a guide to business managers, CIOs, IT executives, IT professionals, and all individuals involved or interested in how to transition an IT organization to become a Lean and Agile IT service provider. This book includes two case studies from Shell and the Rabobank. After reading this document you should be able to: Understand why the IT4IT approach is needed to improve the performance of the IT function; and support the business to leverage new IT in the digital age Understand the vision, scope, and content of the IT4IT Reference Architecture (from a high-level perspective) Understand the benefits of using the IT4IT Reference Architecture within the IT function Initiate the first steps to implement the IT4IT standard in your own IT organization The audience for this Management Guide is: CIOs and other IT executive managers who would like to transform their IT organization to support end-to-end value streams Senior leaders and executives in the business and IT responsible for how IT is organized, managed, and improved Enterprise Architects involved in the implementation of IT management solutions within the IT organization IT professionals and consultants involved in the transition of their organizations to a new streamlined IT factory


Efficient Asset Management

Efficient Asset Management

Author: Richard O. Michaud

Publisher: Oxford University Press

Published: 2008-03-03

Total Pages: 207

ISBN-13: 0199887195

DOWNLOAD EBOOK

In spite of theoretical benefits, Markowitz mean-variance (MV) optimized portfolios often fail to meet practical investment goals of marketability, usability, and performance, prompting many investors to seek simpler alternatives. Financial experts Richard and Robert Michaud demonstrate that the limitations of MV optimization are not the result of conceptual flaws in Markowitz theory but unrealistic representation of investment information. What is missing is a realistic treatment of estimation error in the optimization and rebalancing process. The text provides a non-technical review of classical Markowitz optimization and traditional objections. The authors demonstrate that in practice the single most important limitation of MV optimization is oversensitivity to estimation error. Portfolio optimization requires a modern statistical perspective. Efficient Asset Management, Second Edition uses Monte Carlo resampling to address information uncertainty and define Resampled Efficiency (RE) technology. RE optimized portfolios represent a new definition of portfolio optimality that is more investment intuitive, robust, and provably investment effective. RE rebalancing provides the first rigorous portfolio trading, monitoring, and asset importance rules, avoiding widespread ad hoc methods in current practice. The Second Edition resolves several open issues and misunderstandings that have emerged since the original edition. The new edition includes new proofs of effectiveness, substantial revisions of statistical estimation, extensive discussion of long-short optimization, and new tools for dealing with estimation error in applications and enhancing computational efficiency. RE optimization is shown to be a Bayesian-based generalization and enhancement of Markowitz's solution. RE technology corrects many current practices that may adversely impact the investment value of trillions of dollars under current asset management. RE optimization technology may also be useful in other financial optimizations and more generally in multivariate estimation contexts of information uncertainty with Bayesian linear constraints. Michaud and Michaud's new book includes numerous additional proposals to enhance investment value including Stein and Bayesian methods for improved input estimation, the use of portfolio priors, and an economic perspective for asset-liability optimization. Applications include investment policy, asset allocation, and equity portfolio optimization. A simple global asset allocation problem illustrates portfolio optimization techniques. A final chapter includes practical advice for avoiding simple portfolio design errors. With its important implications for investment practice, Efficient Asset Management 's highly intuitive yet rigorous approach to defining optimal portfolios will appeal to investment management executives, consultants, brokers, and anyone seeking to stay abreast of current investment technology. Through practical examples and illustrations, Michaud and Michaud update the practice of optimization for modern investment management.