This is the first book to introduce the full spectrum of security and risks and their management. Author and field expert Bruce Newsome helps readers learn how to understand, analyze, assess, control, and generally manage security and risks from the personal to the operational. They will develop the practical knowledge and skills they need, including analytical skills, basic mathematical methods for calculating risk in different ways, and more artistic skills in making judgments and decisions about which risks to control and how to control them.
Part II: Managing Security and Risk
This (second) part of the book builds on good analyses and assessments of security and risks by explaining how to manage security and risks. Chapter 8 will help the reader to design and to develop an organization's cultures, structures, and processes to more functionally manage security and risk. Chapter 9 explains why different people have different sensitivities to different risks, that is, why different people tend to be oversensitive to certain types of risks while tolerating others. Chapter 10 explains how to choose controls and strategies in response to risks. Chapter 11 shows how we should record risks, communicate to stakeholders about our understanding and management of security and risks, monitor and review our current management, and ...