Gibson D. Managing Risk in Information Systems

Jones & Bartlett Learning, 2010. – 516 p. – ISBN: 0763791873, 9780763791872Managing Risk in Information Systems provides a unique, in-depth look at how to manage and reduce IT associated risks. Written by an industry expert, this book provides a comprehensive explanation of the SSCP Risk, Response, and Recovery Domain in addition to providing a thorough overview of risk management and its implications on IT infrastructures and compliance. Using examples and exercises, this book incorporates hands-on activities to walk the reader through the fundamentals of risk management, strategies and approaches for mitigating risk, and the anatomy of how to create a plan that reduces risk.After a 22 year Navy career working with computers and electronics, Darril Gibson set a goal for himself. He decided he wanted to become a full time author and write books that help others. Since then, he has authored, coauthored, or contributed to more than 30 books. One of his true joys in life is receiving emails from readers letting him know about their successes after using one of his books.
Over the years, Darril has earned multiple certifications including: CompTIA A+, Network+, Security+, CASP, and CTT+; (ISC)2 SSCP and CISSP; Microsoft MCT (since 1999), MCSA, MCSE, MCITP, MCTS, MCDST, MCAD, MCSD, and MCDST.
Darril has written books on CompTIA A+, Network+, and Security+ core certifications, ISC(2) SSCP and CISSP security certifications, and multiple Microsoft certifications. He has also written a book for people just starting their careers titled "You Can Do Anything - Three Simple Steps to Success for Graduates."
He regularly blogs at blogs.GetCertifiedGetAhead.com.