Digital and information technologies: Legal aspects

This book helps auditors understand the reality of performing the internal audit role and the importance of properly managing ethical standards.

The book covers all knowledge areas from the BABOK(R), Third Edition, and is designed to be a study guide for the CBAP(R) certification from IIBA(TM).

Enterprise Level Security: Securing Information Systems in an Uncertain World provides a modern alternative to the fortress approach to security.

When it's all said and done, penetration testing remains the most effective way to identify security vulnerabilities in computer networks.

In late 2013, approximately 40 million customer debit and credit cards were leaked in a data breach at Target.

Address Errors before Users Find ThemUsing a mix-and-match approach, Software Test Attacks to Break Mobile and Embedded Devices presents an attack basis for testing mobile and embedded systems.

This book explores a broad cross section of research and actual case studies to draw out new insights that may be used to build a benchmark for IT security professionals.

Although many software books highlight open problems in secure software development, few provide easily actionable, ground-level solutions.

Android Security: Attacks and Defenses is for anyone interested in learning about the strengths and weaknesses of the Android platform from a security perspective.

Fundamentals of Medical Practice Investigation fills an important gap in the resources for criminal investigators.

Some have estimated that healthcare fraud in the United States results in losses of approximately $80 billion a year.

In Fraud Examiners in White-Collar Crime Investigations, Petter Gottschalk examines and evaluates the investigative processes used to combat white-collar crime.

Although organizations that store, process, or transmit cardholder information are required to comply with payment card industry standards, most find it extremely challenging to comply with and meet the requirements of these technically rigorous standards.

As a result of a rigorous, methodical process that (ISC) follows to routinely update its credential exams, it has announced that enhancements will be made to both the Certified Information Systems Security Professional (CISSP) credential, beginning April 15, 2015.

Security is too important to be left in the hands of just one department or employee-it's a concern of an entire enterprise.

As the global leader in information security education and certification, (ISC)2 has a proven track record of educating and certifying information security professionals.

This book provides emergent knowledge relating to physical, cyber, and human risk mitigation in a practical and readable approach for the corporate environment.

Any organization with valuable data has been or will be attacked, probably successfully, at some point and with some damage.

Internal Audit Practice from A to Z addresses the practice of internal auditing using GAAS (Generally Accepted Auditing Standards), GAGAS (Generally Accepted Government Auditing Standards) and International Standards for the Professional Practice of Internal Auditing (Standards)-IPPF, International Standards Organization (ISO), International Standards of Supreme Audit Institutions (ISSAI), International Standards on Auditing (ISA) as enunciated by the Institute of Internal Auditors (IIA), International Organization of Standardizations (ISO), International Organization of Supreme Audit Institutions (INTOSAI), Government Accountability Office (GAO) & International Federation of Accountants (IFAC).

Cybercrime, computer crime, Internet crime, and technosecurity have been of increasing concern to citizens, corporations, and governments since their emergence in the 1980s.

This is the first book to finally address the umbrella term corporate defense, and to explain how an integrated corporate defense program can help an organization address both value creation and preservation.

The Complete Guide to Cybersecurity Risks and Controls presents the fundamental concepts of information and communication technology (ICT) governance and control.

Although we live in an era in which we are surrounded by an ever-deepening fog of data, few of us truly understand how the data are created, where data are stored, or how to retrieve or destroy data-if that is indeed possible.

Most organizations have been caught off-guard with the proliferation of smart devices.

Risk-based operational audits and performance audits require a broad array of competencies.

Operational Assessment of IT presents ideas and concepts of optimization designed to improve an organization's business processes and assist business units in meeting organizational goals more effectively.

This book introduces two internationally recognized bodies of knowledge: COBIT 5 from a cybersecurity perspective and the NIST Framework for Improving Critical Infrastructure Cybersecurity (CSF).

There are many webinars and training courses on Data Analytics for Internal Auditors, but no handbook written from the practitioner's viewpoint covering not only the need and the theory, but a practical hands-on approach to conducting Data Analytics.

This book gathers and analyzes the latest attacks, solutions, and trends in mobile networks.

Software Quality Assurance: Integrating Testing, Security, and Audit focuses on the importance of software quality and security.

Cyber Security for Industrial Control Systems: From the Viewpoint of Close-Loop provides a comprehensive technical guide on up-to-date new secure defending theories and technologies, novel design, and systematic understanding of secure architecture with practical applications.

In this book, the author presents lessons learned from her extensive experience as a CAE to help internal auditors understand the challenges, issues, and potential alternative solutions when executing the role.

Email has become an indispensable communication tool in daily life.

In Fraud Examiners in White-Collar Crime Investigations, Petter Gottschalk examines and evaluates the investigative processes used to combat white-collar crime.

The Internet of Things (IoT) has attracted strong interest from both academia and industry.

The book covers data privacy in depth with respect to data mining, test data management, synthetic data generation etc.

This book introduces the Cognitive Early Warning Predictive System (CEWPS ) as the new digital immune system.

This book examines the legal and policy aspects of cyber-security.

DDoS Attacks: Evolution, Detection, Prevention, Reaction, and Tolerance discusses the evolution of distributed denial-of-service (DDoS) attacks, how to detect a DDoS attack when one is mounted, how to prevent such attacks from taking place, and how to react when a DDoS attack is in progress, with the goal of tolerating the attack.

This book is devoted to efficient pairing computations and implementations, useful tools for cryptographers working on topics like identity-based cryptography and the simplification of existing protocols like signature schemes.

This book provides a complete guide on fraud hotlines.

Real-World Electronic Voting: Design, Analysis and Deployment captures all major developments in electronic voting since 2003 in a real-world setting.

Today's malware mutates randomly to avoid detection, but reactively adaptive malware is more intelligent, learning and adapting to new computer defenses on the fly.

Originally written by a team of Certified Protection Professionals (CPPs), Anthony DiSalvatore gives valuable updates to The Complete Guide for CPP Examination Preparation.

Since the turn of the century much has happened in politics, governments, spying, technology, global business, mobile communications, and global competition on national and corporate levels.

As the number of Internet-based consumer transactions continues to rise, the need to protect these transactions against hacking becomes more and more critical.

Think about someone taking control of your car while you're driving.

Human Factors and Cybersecurity examines the intricate interplay between human behaviour and digital security, offering a comprehensive exploration of how psychological, dispositional, and situational factors influence cybersecurity practices.

Mobile, wearable, and self-driving telephones are just a few examples of modern distributed networks that generate enormous amount of information every day.