Insider Computer Fraud: An In-depth Framework for Detecting and Defending against Insider IT Attacks
An organization’s employees are often more intimate with its computer system than anyone else. Many also have access to sensitive information regarding the company and its customers. This makes employees prime candidates for sabotaging a system if they become disgruntled or for selling privileged in...
Đã lưu trong:
Tác giả chính: | |
---|---|
Định dạng: | Sách |
Ngôn ngữ: | English |
Được phát hành: |
CRC Press
2009
|
Truy cập trực tuyến: | http://scholar.dlu.edu.vn/thuvienso/handle/DLU123456789/1647 |
Các nhãn: |
Thêm thẻ
Không có thẻ, Là người đầu tiên thẻ bản ghi này!
|
Thư viện lưu trữ: | Thư viện Trường Đại học Đà Lạt |
---|
id |
oai:scholar.dlu.edu.vn:DLU123456789-1647 |
---|---|
record_format |
dspace |
spelling |
oai:scholar.dlu.edu.vn:DLU123456789-16472009-12-04T02:46:04Z Insider Computer Fraud: An In-depth Framework for Detecting and Defending against Insider IT Attacks Brancik, Kenneth An organization’s employees are often more intimate with its computer system than anyone else. Many also have access to sensitive information regarding the company and its customers. This makes employees prime candidates for sabotaging a system if they become disgruntled or for selling privileged information if they become greedy. Insider Computer Fraud: An In-depth Framework for Detecting and Defending against Insider IT Attacks presents the methods, safeguards, and techniques that help protect an organization from insider computer fraud. Drawing from the author’s vast experience assessing the adequacy of IT security for the banking and securities industries, the book presents a practical framework for identifying, measuring, monitoring, and controlling the risks associated with insider threats. It not only provides an analysis of application or system-related risks, it demonstrates the interrelationships that exist between an application and the IT infrastructure components it uses to transmit, process, and store sensitive data. The author also examines the symbiotic relationship between the risks, controls, threats, and action plans that should be deployed to enhance the overall information security governance processes. Increasing the awareness and understanding necessary to effectively manage the risks and controls associated with an insider threat, this book is an invaluable resource for those interested in attaining sound and best practices over the risk management process. Insider Computer Fraud Related Research in Insider Computer Fraud and Information Security Controls The Insider Threat Strategic Planning Process Information Technology Architecture and Insider Computer Fraud Prevention Protection of Web Sites from Insider Abuse and the Information Technology Infrastructure Web Services Security and Control Considerations for Reducing Transaction Risks Application Security and Methods for Reducing Insider Computer Fraud Insider Computer Fraud Taxonomy and the Art of Key Fraud Indicator (KFI) Selection Process Key Fraud Signature (KFS) Selection Process for Detecting Insider Computer Fraud Application and System Journaling and the Software Engineering Process The Role of Neural Networks in the Insider Computer Fraud Framework Appendices: Application Access Controls. Application Data Origination/Input. Application Data Processing. Application Output/Management Information System (MIS). Key Fraud Signature (KFS) Worksheet. Cyber-Security HealthCheck Acronym List. Glossary. 2009-12-04T02:46:04Z 2009-12-04T02:46:04Z 2007 Book http://scholar.dlu.edu.vn/thuvienso/handle/DLU123456789/1647 en application/rar CRC Press |
institution |
Thư viện Trường Đại học Đà Lạt |
collection |
Thư viện số |
language |
English |
description |
An organization’s employees are often more intimate with its computer system than anyone else. Many also have access to sensitive information regarding the company and its customers. This makes employees prime candidates for sabotaging a system if they become disgruntled or for selling privileged information if they become greedy. Insider Computer Fraud: An In-depth Framework for Detecting and Defending against Insider IT Attacks presents the methods, safeguards, and techniques that help protect an organization from insider computer fraud.
Drawing from the author’s vast experience assessing the adequacy of IT security for the banking and securities industries, the book presents a practical framework for identifying, measuring, monitoring, and controlling the risks associated with insider threats. It not only provides an analysis of application or system-related risks, it demonstrates the interrelationships that exist between an application and the IT infrastructure components it uses to transmit, process, and store sensitive data. The author also examines the symbiotic relationship between the risks, controls, threats, and action plans that should be deployed to enhance the overall information security governance processes.
Increasing the awareness and understanding necessary to effectively manage the risks and controls associated with an insider threat, this book is an invaluable resource for those interested in attaining sound and best practices over the risk management process. |
format |
Book |
author |
Brancik, Kenneth |
spellingShingle |
Brancik, Kenneth Insider Computer Fraud: An In-depth Framework for Detecting and Defending against Insider IT Attacks |
author_facet |
Brancik, Kenneth |
author_sort |
Brancik, Kenneth |
title |
Insider Computer Fraud: An In-depth Framework for Detecting and Defending against Insider IT Attacks |
title_short |
Insider Computer Fraud: An In-depth Framework for Detecting and Defending against Insider IT Attacks |
title_full |
Insider Computer Fraud: An In-depth Framework for Detecting and Defending against Insider IT Attacks |
title_fullStr |
Insider Computer Fraud: An In-depth Framework for Detecting and Defending against Insider IT Attacks |
title_full_unstemmed |
Insider Computer Fraud: An In-depth Framework for Detecting and Defending against Insider IT Attacks |
title_sort |
insider computer fraud: an in-depth framework for detecting and defending against insider it attacks |
publisher |
CRC Press |
publishDate |
2009 |
url |
http://scholar.dlu.edu.vn/thuvienso/handle/DLU123456789/1647 |
_version_ |
1757656693034975232 |