Information Security Cost Management

Provides ways to maximize budgets for information securityDemonstrates how to describe IT security in business termsShows how to design the best security strategy for an organizationDiscusses the best ways to outsource IT securityPresents methods for managing IT budgets while complying with federal regulations such as Sarbanes Oxley and HIPPA Written in an accessible, informal style, Information Security Cost Management demonstrates how to strategically maximize a limited security budget without compromising the quality of risk management initiatives. Organized into management components, each chapter highlights common pitfalls in security initiatives and recommends cost saving methods to achieve intended results. It presents a six-step process that shows how to identify the most critical components of a system's security, staff a security operation, prioritize spending, manage internal and external audits, assess costs for identity and access management, maximize the use of vendors, and evaluate the costs of outsourcing.