Good book for risk/threat analysis?
Does anyone have any good recommendations for a book for risk analysis as im trying to find one for my information security module at uni. Preferably one which demonstrates how to go through the whole process?
Thanks
Thanks
Xbox Live: Bring It On
Bsc (hons) Network Computing - 1st Class
WIP: Msc advanced networking
Bsc (hons) Network Computing - 1st Class
WIP: Msc advanced networking
Comments
-
sprkymrk
Member Posts: 4,884 ■■■□□□□□□□
I'm not sure about a book dedicated to the subject risk analysis alone, but one that you might check is Web Security for Network and System Administrators by David Mackey (Thompson Course Technology).
The first three chapters have great information about risk assessment, building a security policy, and threat taxonomy. It's the only security book I've ever seen that actually gives you a formula for assessing risk/threat and managing it. In my opinion thie first 3 chapters of this book are worth the price.All things are possible, only believe. -
RTmarc
Member Posts: 1,082 ■■■□□□□□□□
Here's another good one but goes into a lot more depth than just risk analysis.
Amazon.com: Information Security Management Handbook, Sixth Edition, Volume 2: Harold F. Tipton, Micki Krause: Books