Record Detail Back
SECURITY MANAGEMENT OF NEXT GENERATION TELECOMMUNICATIONS NETWORKS AND SERVIC
- Share to:
This book focuses on the management of information security in next generation networks from the viewpoint of a telecommunications service provider, commercial enterprise or any other type of networked organization as a governance issue that needs to follow the “Plan, Do, Check and Act” approach promulgated by W. Edwards Deming and captured in ISO Standard 27001 as it applies to the management of security. Following a review of the evolution of standardized network management concepts and how networking concepts and context have grown in complexity over the last 20 years, the need for security governance is discussed. Under governance, not only are current management frameworks considered, the need for well-organized information security policies, security organizational structures, approaches for establishing security procedures, and development of security requirements are discussed. Risk management, a core component of information security governance, is then covered starting with asset inventory capture and categorization through vulnerability identification, threat determination, risk mitigation, and prioritization of mitigation plans. The subject of operations security (OPSEC) is then dealt with as OPSEC is where the Deming “Act” and “Check” aspects are most fully realized. The security governance concepts presented herein are equally applicable to both legacy and next generation network environments. A significant number of appendices useful to industry professionals and students are included, which provide examples of information security policies, detailed security requirements derivation, request for proposal security material, evaluation of proposal security submissions, security statements of work for contracts, and operations security procedures for auditing and platform hardening. Three appendices provide overviews covering the role of cryptography in information security, authentication of subjects, network security mechanisms, and securing network protocols.
Stuart Jacobs - Personal Name
1st Edtion
978-0-470-56513-1
NONE
SECURITY MANAGEMENT OF NEXT GENERATION TELECOMMUNICATIONS NETWORKS AND SERVIC
Management
English
he Institute of Electrical and Electronics Engineers, Inc.
2014
USA
1-391
LOADING LIST...
LOADING LIST...