Auditing Information and Cyber Security Governance A Controls-Based Approach

You must be logged in to access this title.

Already a member? Log in

Synopsis

A comprehensive entity security program deploys information asset protection through stratified technological and non-technological controls. Controls are necessary for counteracting threats, opportunities, and vulnerabilities risks in a manner that reduces potential adverse effects to defined, acceptable levels. This book presents a methodological approach in the context of normative decision theory constructs and concepts with appropriate reference to standards and the respective guidelines. Normative decision theory attempts to establish a rational framework for choosing between alternative courses of action when the outcomes resulting from the selection are uncertain. Through the methodological application, decision theory techniques can provide objectives determination, interaction assessments, performance estimates, and organizational analysis. A normative model prescribes what should exist according to an assumption or rule.

Book details

Series:: Internal Audit and IT Audit
Author:: Robert E. Davis
ISBN:: 9781000416121
Related ISBNs:: 9781003099673, 9781032044484, 9780367568504
Publisher:: CRC Press
Pages:: 284
Reading age:: Not specified
Includes images:: Yes
Date of addition:: 2021-09-23
Usage restrictions:: Copyright
Copyright by:: Robert E. Davis. Reasonable efforts have been made to publish reliable data and information, but the author and publisher cannot assume responsibility for the validity of all materials or the consequences of their use. The authors and publishers have attem
Adult content:: No
Language:: English
Categories:: Business and Finance, Computers and Internet, Law, Legal Issues and Ethics, Nonfiction