Ely, U.K., : IT Governance Pub., 2009

1-84928-129-7

1-282-52904-8

9786612529047

1-84928-007-X

1 online resource (601 p.)

KrushWaylon

005.74

Computer security

Computer networks - Certification

Information technology - Security measures

Information technology - Certification

Data protection

Inglese

Description based upon print version of record.

Includes bibliographical references.

INTRODUCTION; CHAPTER 1: AN ABRIDGED HISTORY OF INFORMATION TECHNOLOGY AND INFORMATION SYSTEMS SECURITY; CHAPTER 2: THE ESSENTIAL INFORMATION SYSTEMS SECURITY REGULATIONS; CHAPTER 3: THE AUTHORIZATION PROCESS FRAMEWORK; CHAPTER 4: THE AUTHORIZATION PROCESS - ESTABLISHING A FOUNDATION; CHAPTER 5: PRE-AUTHORIZATION ACTIVITIES - THE FUNDAMENTALS; CHAPTER 6: PLAN, INITIATE AND IMPLEMENT AUTHORIZATION - PREPARING FOR AUTHORIZATION; CHAPTER 7: VERIFY, VALIDATE & AUTHORIZE - CONDUCTING THE AUTHORIZATION; CHAPTER 8: OPERATE & MAINTAIN - MAINTAINING AUTHORIZATION

CHAPTER 9: REMOVE THE INFORMATION SYSTEM FROM OPERATIONCHAPTER 10: AUTHORIZATION PACKAGE AND SUPPORTING EVIDENCE; CHAPTER 11: C&A IN THE US DEPARTMENT OF DEFENSE; CHAPTER 12: AUTHORIZATION IN THE FEDERAL GOVERNMENT; CHAPTER 13: THE FEDERAL INFORMATION SECURITY MANAGEMENT

ACT (FISMA); CHAPTER 14: AUTHORIZATION AND THE SYSTEM LIFE CYCLE (SLC); CHAPTER 15: INFORMATION SYSTEMS SECURITY TRAINING AND CERTIFICATION; CHAPTER 16: THE FUTURE - REVITALIZING AND TRANSFORMING C&A; THE RESOURCE CD; GLOSSARY; ACRONYMS

'The Definitive Guide to the C&A Transformation' is the first comprehensive manual that sets out to explain the current standards and best practices. The book provides all the information needed to recognize, implement and manage the relevant authorization requirements, and therefore to achieve compliance with federal, local and agency laws and policies. Each chapter not only provides a list of related references but also offers recommendations for additional reading.