{"product_id":"the-ciso-journey-9781138197398","title":"The CISO Journey","description":"\u003cb\u003eBook Synopsis\u003c\/b\u003e\u003cbr\u003eThe book takes readers though a series of security and risk discussions based on real-life experiences. While the experience story may not be technical, it will relate specifically to a value or skill critical to being a successful CISO. The core content is organized into ten major chapters, each relating to a Rule of Information Security developed through a career of real life experiences. The elements are selected to accelerate the development of CISO skills critical to success. Each segments clearly calls out lessons learned and skills to be developed. The last segment of the book addresses presenting security to senior execs and board members, and provides sample content and materials.\u003cbr\u003e\u003cbr\u003e\u003cb\u003eTrade Review\u003c\/b\u003e\u003cbr\u003e\u003cp\u003eAs a CISO, I approached Gene's book with caution. Put two such people in a room and ask them a question, and an argument will inevitably ensue - even if they agree. Therefore, and as you might expect, I found some of Gene's conclusions to differ from mine. But what really stood out to me is how, even as I was having these arguments play out inside my head, I seemed to also be adopting an almost imperceptible yet constant nod. I could not help but enjoy reading his thoughtful analysis of every information security topic that he chooses to tackle, and his ability to tie everything together in an easy-to-understand, clear and logical fashion is highly appreciated and sorely needed in the industry.\u003cbr\u003e\u003cbr\u003eThen, as I continued my journey through Gene's carefully laid-out thoughts and explanations, personal experiences, war stories, and insightful advice, it became apparent that this is far more than merely an instructional book into the many aspects of managing information security. Indeed, for anyone who is interested in advancing their career in the field, this book offers countless tools that can be followed to success, in every area. Just the chapter \"NEVER trust and ALWAYS verify\" is itself worth the price of admission.\u003cbr\u003e\u003cbr\u003eConsume it slowly, and give it the attention it deserves, and Gene's book will repay you for it in spades. You may not follow his exact path, but whatever path you take, his guidance will certainly help you forward.\u003c\/p\u003e\u003cp\u003e-- Barak Engel, CISO and author of \u003cem\u003eWhy CISOs Fail: The Missing Link in Security Management--and How to Fix It\u003c\/em\u003e\u003c\/p\u003e\u003cbr\u003e\u003cbr\u003e\u003cb\u003eTable of Contents\u003c\/b\u003e\u003cbr\u003e\u003cp\u003eList of Figures\u003c\/p\u003e\u003cp\u003eList of Tables\u003c\/p\u003e\u003cp\u003ePrologue\u003c\/p\u003e\u003cp\u003eForeword\u003c\/p\u003e\u003cp\u003eAcknowledgments\u003c\/p\u003e\u003cp\u003eAuthor\u003c\/p\u003e\u003cp\u003eSection I INTRODUCTION AND HISTORY\u003c\/p\u003e\u003cp\u003e1 Introduction: The Journey\u003c\/p\u003e\u003cp\u003e2 Learning from History?\u003c\/p\u003e\u003cp\u003e3 My First CISO Lesson: The Squirrel\u003c\/p\u003e\u003cp\u003eSection II THE RULES AND INDUSTRY DISCUSSION\u003c\/p\u003e\u003cp\u003e4 A Weak Foundation Amplifies Risk\u003c\/p\u003e\u003cp\u003e5 If a Bad Guy Tricks You into Running His Code on Your Computer, It’s Not Your Computer Anymore\u003c\/p\u003e\u003cp\u003e6 There’s Always a Bad Guy Out There Who’s Smarter, More Knowledgeable, or Better-Equipped Than You\u003c\/p\u003e\u003cp\u003e7 Know the Enemy, Think Like the Enemy\u003c\/p\u003e\u003cp\u003e8 Know the Business, Not Just the Technology\u003c\/p\u003e\u003cp\u003e9 Technology Is Only One-Third of Any Solution\u003c\/p\u003e\u003cp\u003e10 Every Organization Must Assume Some Risk\u003c\/p\u003e\u003cp\u003e11 When Preparation Meets Opportunity, Excellence Happens\u003c\/p\u003e\u003cp\u003e12 There Are Only Two Kinds of Organizations: Those That Know They’ve Been Compromised and Those That Don’t Know Yet\u003c\/p\u003e\u003cp\u003e13 In Information Security, Just Like in Life, Evolution Is Always Preferable to Extinction\u003c\/p\u003e\u003cp\u003e14 A Security Culture Is In Place When Talk Is Replaced with Action\u003c\/p\u003e\u003cp\u003e15 NEVER Trust and ALWAYS Verify\u003c\/p\u003e\u003cp\u003eSection III SUMMARY\u003c\/p\u003e\u003cp\u003e16 My Best Advice for New CISOs\u003c\/p\u003e\u003cp\u003eAppendix A: The Written Information Security Plan\u003c\/p\u003e\u003cp\u003eAppendix B: Talking to the Board\u003c\/p\u003e\u003cp\u003eAppendix C: Establishing an Incident Response Program\u003c\/p\u003e\u003cp\u003eAppendix D: Sample High-Level Risk Assessment Methodology\u003c\/p\u003e","brand":"Taylor \u0026 Francis Ltd","offers":[{"title":"Default Title","offer_id":49407215305047,"sku":"9781138197398","price":109.25,"currency_code":"GBP","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0817\/1739\/5799\/files\/9781138197398.jpg?v=1730498596","url":"https:\/\/bookcurl.com\/products\/the-ciso-journey-9781138197398","provider":"Book Curl","version":"1.0","type":"link"}