Skip to main content
Elsevier

Books in Security

This collection covers national security, cybersecurity, and crime prevention. Supporting security professionals, policymakers, and researchers, it features threat analysis, policy development, and technological solutions that strengthen safety and resilience.

  • School Security

    How to Build and Strengthen a School Security Program
    • 3rd Edition
    • Paul Timm
    • English
    School Security: How to Build and Strengthen a School Safety Program, Third Edition emphasizes a proactive rather than reactive approach to school security. Through a holistic approach, rather than focusing on a particular threat or event, readers are introduced to basic loss prevention and safety concepts. The book covers fundamental CPTED concepts and addresses bullying, teen suicide, harassment, and dating violence. This updated new edition includes new information throughout on topics such as new legislative requirements, technological advancements such as AI, communications and access control, and even a parent’s guide to school safety.The book discusses how to positively influence student behavior, lead staff training programs, and write sound security policies. It presents complex security concepts in straightforward language that resonates with educational stakeholders who may not have security backgrounds. It recognizes the financial constraints facing most educational institutions and prioritizes cost-effective solutions. Tiered implementation strategies allow schools to enhance security incrementally within available resources. It also emphasizes integrating security measures into school culture, balancing robust security with maintaining an open, welcoming educational environment—a critical concern overlooked in more technically-oriented security literature.

  • Introduction to International Disaster Management

    • 5th Edition
    • Damon P. Coppola
    • English
    Introduction to International Disaster Management, Fifth Edition, offers an unbiased, global perspective for students and practitioners alike. It provides a comprehensive understanding of the disaster management profession, covering the varied sources of risk and vulnerability, the systems that exist to manage hazard risk, and the many different stakeholders involved, from individuals to global organizations. This text also serves as a reference on scores of disaster management topics, including various technological and intentional hazards, on international disaster management structures and systems, on global humanitarian spending and support, and much more. Taking a real-world approach with considerable illustration through case studies and recent and historical disaster events, this book prepares students interested in joining the disaster management community to understand the work they will be doing. In addition, it assists those who already work with the disaster management community by helping them better navigate this complex environment.Fully updated throughout, the new edition includes revised workflows and communications, coverage of emerging global hazards and recent disaster events, and revised sections on the Sendai Framework for Disaster Risk Reduction, Multi-Hazard Early Warning Systems, and emerging technologies for disaster risk reduction and resilience. Special emphasis is placed throughout on environmental justice, social justice, gender, and equality in global disaster management approaches. Recent disasters addressed across in-depth case studies include the COVID-19 Pandemic, the Tonga Eruption, regional heatwaves, the Beirut Port Explosion, the 2021 Haiti Earthquake, Typhoon Rai, the 2021 Surfside Condo Collapse, the 2022 South Asia Floods, and notable earthquakes. Another Voice - Expert Input boxes, along with extended exhibits, key word definitions, and chapter summaries enhance understanding, along with updated ancillary materials for students and instructors alike.

  • Hospital and Healthcare Security

    • 7th Edition
    • Tony W. York
    • English
    Hospital and Healthcare Security, Seventh Edition reflects the current state of healthcare security, particularly in data security and privacy, patient-generated violence, new technologies, and regulatory changes. The book explains the basics and higher expertise concerns, such as the roles of design, emergency management, and policy. Conveying a wide spectrum of topics in an easy-to-comprehend format, it provides a thorough understanding of how the modern healthcare security program should be structured, resourced, and integrated around the principles of people, processes, and technology. This industry-leading resource includes best practices, security master planning, and how to layer in protection philosophies in policies and procedures. Due to rapid changes in violence in healthcare, regulatory requirements, litigation, accreditation standards, advancements in technology, and new healthcare security issues and topics, the new edition contains approximately 25-30% new and updated data and corresponding examples. It is deemed by healthcare executives, accrediting agencies, and industry associations to set the standard of care for healthcare security systems and programs.

  • Practical Aviation Security

    Predicting and Preventing Future Threats
    • 4th Edition
    • Jeffrey C. Price + 1 more
    • English
    Practical Aviation Security: Predicting and Preventing Future Threats, Fourth Edition is a guide to the aviation security system, from crucial historical events to the policies, policymakers, and major terrorist and criminal acts that have shaped the procedures in use today, as well as the cutting-edge technologies that are shaping the future. Using case studies and practical security measures now in use at airports worldwide, readers learn the effective methods and fundamental principles involved in designing and implementing a security system. This expanded fourth edition covers new threats and technologies to reflect the latest knowledge in the field from the past decade.This book will be ideal for airport, airline, charter, government, and others with aviation security responsibilities to better implement their security programs, evaluate the ever-changing risk environment, and respond appropriately and responsibly.

  • Introduction to Emergency Management

    • 8th Edition
    • George Haddow + 2 more
    • English
    Introduction to Emergency Management, Eighth Edition sets the standard for excellence in the field and has educated a generation of emergency management professionals. This trusted resource provides a comprehensive overview of core concepts in emergency management and instructs in their application, addressing why the emergency management profession exists, what actions its professionals and practitioners are tasked with performing, and what achievements are sought through the conduct of these various efforts. Students and new professionals alike will gain an enhanced understanding of key terminology and concepts, enabling them to work with emergency management specialists.Fully updated throughout, the new edition includes revised workflows and communications; explanations of FEMA, state, and local emergency management organizational policies; the growing role of the private sector in emergency management; Covid-19 pandemic preparedness and response; and the impact of climate change on emergency management policies and practices, among other timely examples and application areas. Each chapter features all-new case studies on recent disasters, key terms, summary points, and self-review questions. Student and faculty use is supported by an expanded ancillary package, featuring a fuller instructor manual, lecture PowerPoint Slides, and linked documents, data sets, references, and video examples.

  • Disaster Communications in a Changing Media World

    • 3rd Edition
    • George Haddow + 1 more
    • English
    Disaster Communications in a Changing Media World, Third Edition provides valuable information for navigating these priorities in the age of evolving media. The emergence of new media like the Internet, email, blogs, text messaging, cell phone photos, and the increasing influence of first informers are redefining the roles of government and media. The tools and rules of communications are evolving, and disaster communications must also evolve to accommodate these changes and exploit the opportunities they provide. This book illuminates the path to effective disaster communication, including the need for transparency, increased accessibility, trustworthiness and reliability, and partnerships with the media.

  • Security Operations Management

    • 4th Edition
    • Robert McCrie + 1 more
    • English
    Security Operations Management, Fourth Edition, the latest release in this seminal reference on corporate security management operations for today’s security management professionals and students, explores the characteristics of today’s globalized workplaces, security’s key role within them, and what the greatest concern is for security practitioners and senior managers. Incorporating the latest security research and best practices, the book covers key skills needed by security managers to demonstrate the value of their security program, offers information on identifying and managing risk, and reviews the latest technological advances in security control, command, communications and computing.

  • School Security

    How to Build and Strengthen a School Safety Program
    • 2nd Edition
    • Paul Timm
    • English
    School Security: How to Build and Strengthen a School Safety Program, Second Edition emphasizes a proactive rather than reactive approach to school security. Readers are introduced to basic loss prevention and safety concepts, including how to communicate safety information to students and staff, how to raise security awareness, and how to prepare for emergencies. The book discusses how to positively influence student behavior, lead staff training programs, and write sound security policies. This book isn't just for security professionals and will help educators and school administrators without formal security training effectively address school risk. As school safety challenges continue to evolve with new daily stories surrounding security lapses, lockdowns, or violent acts taking place, this thoroughly revised edition will help explain how to make educational institutions a safer place to learn.

  • Introduction to Homeland Security

    Principles of All-Hazards Risk Management
    • 6th Edition
    • George Haddow + 2 more
    • English
    Written by renowned experts, Introduction to Homeland Security, Sixth Edition, informs users about the concepts and bedrock principles of homeland security. Readers will gain a solid appreciation of the broad range of topics that fall within the expanse of the homeland security umbrella and understand how and why they are so closely interconnected. The text will also provide an overview of the evolutionary process behind modern homeland security structures, which helps users to understand why certain functions exist and how they contribute to national and local security efforts. Unlike most books that focus solely on terrorism, this text covers an expansive range of homeland security topics including all-hazards emergency management, cybersecurity, border and transportation security, immigration and customs enforcement, and others.

  • Investigations and the Art of the Interview

    • 4th Edition
    • Inge Sebyan Black + 1 more
    • English
    The Art of Investigative Interviewing, Fourth Edition, builds on the successes of the previous editions providing the reader guidance on conducting investigative interviews, both ethically and professionally. The book can be used by anyone who is involved in investigative interviewing. It is a perfect combination of real, practical, and effective techniques, procedures, and actual cases. The reader learns key elements of investigative interviewing, such as human psychology, proper interview preparation, tactical concepts, controlling the interview environment, and evaluating the evidence obtained from the interview. New to this edition will be coverage of Open Source Intelligence (OSINT) tools, workplace investigations, fraud investigations and the role of audit. Larry Fennelly joins original author Inge Sebyan Black, both well-known and respected in the field, providing everything an interviewer needs to know in order to conduct successful interviews with integrity and within the law. Written for anyone involved in investigative interviewing.

  • Introduction to Emergency Management

    • 7th Edition
    • Jane Bullock + 2 more
    • English
    Introduction to Emergency Management, Seventh Edition, sets the standard for excellence in the field and has educated a generation of emergency managers. This long-trusted resource provides a broad overview of the key aspects of the emergency management profession. Readers will gain an understanding of why the emergency management profession exists, what actions its professionals and practitioners are tasked with performing, and what achievements are sought through the conduct of these various efforts. Students and new professionals alike will further gain an enhanced understanding of key terminology and concepts that enable them to work with emergency management specialists.

  • Effective Security Management

    • 7th Edition
    • Charles A. Sennewald + 1 more
    • English
    Effective Security Management, Seventh Edition teaches practicing security professionals how to build their careers by mastering the fundamentals of good management. Charles Sennewald and Curtis Baillie bring common sense, wisdom and humor to this bestselling introduction to security management. For both new and experienced security managers, this resource is the classic book on the topic.

  • The Professional Protection Officer

    Practical Security Strategies and Emerging Trends
    • 2nd Edition
    • Sandi J. Davies + 1 more
    • English
    Eight previous iterations of this text have proven to be highly regarded and considered the definitive training guide and instructional text for first-line security officers in both the private and public sectors. The material included in the newest version covers all the subjects essential to the training of protection officers. This valuable resource and its predecessors have been utilized worldwide by the International Foundation for Protection Officers since 1988, as the core curriculum for the Certified Protection Officer (CPO) Program. The Professional Protection Officer: Practical Security Strategies and Emerging Trends provides critical updates and fresh guidance, as well as diagrams and illustrations; all have been tailored to the training and certification needs of today’s protection professionals.

  • Security Controls Evaluation, Testing, and Assessment Handbook

    • 2nd Edition
    • Leighton Johnson
    • English
    Security Controls Evaluation, Testing, and Assessment Handbook, Second Edition, provides a current and well-developed approach to evaluate and test IT security controls to prove they are functioning correctly. This handbook discusses the world of threats and potential breach actions surrounding all industries and systems. Sections cover how to take FISMA, NIST Guidance, and DOD actions, while also providing a detailed, hands-on guide to performing assessment events for information security professionals in US federal agencies. This handbook uses the DOD Knowledge Service and the NIST Families assessment guides as the basis for needs assessment, requirements and evaluation efforts.

  • Smart Cities Cybersecurity and Privacy

    • 1st Edition
    • Danda B. Rawat + 1 more
    • English
    Smart Cities Cybersecurity and Privacy examines the latest research developments and their outcomes for safe, secure, and trusting smart cities residents. Smart cities improve the quality of life of citizens in their energy and water usage, healthcare, environmental impact, transportation needs, and many other critical city services. Recent advances in hardware and software, have fueled the rapid growth and deployment of ubiquitous connectivity between a city’s physical and cyber components. This connectivity however also opens up many security vulnerabilities that must be mitigated. Smart Cities Cybersecurity and Privacy helps researchers, engineers, and city planners develop adaptive, robust, scalable, and reliable security and privacy smart city applications that can mitigate the negative implications associated with cyber-attacks and potential privacy invasion. It provides insights into networking and security architectures, designs, and models for the secure operation of smart city applications.

  • Security and Loss Prevention

    An Introduction
    • 7th Edition
    • Philip Purpura
    • English
    Security and Loss Prevention: An Introduction, Seventh Edition, provides introductory and advanced information on the security profession. Security expert, Phil Purpura, CPP, includes updates on security research, methods, strategies, technologies, laws, issues, statistics and career options, providing a comprehensive and interdisciplinary book that draws on many fields of study for concepts, strategies of protection and research. The book explains the real-world challenges facing security professionals and offers options for planning solutions. Linking physical security with IT security, the book covers internal and external threats to people and assets and private and public sector responses and issues. As in previous editions, the book maintains an interactive style that includes examples, illustrations, sidebar questions, boxed topics, international perspectives and web exercises. In addition, course instructors can download ancillaries, including an instructor’s manual with outlines of chapters, discussion topics/special projects, essay questions, and a test bank and PowerPoint presentation for each chapter.

  • Seeking the Truth from Mobile Evidence

    Basic Fundamentals, Intermediate and Advanced Overview of Current Mobile Forensic Investigations
    • 1st Edition
    • John Bair
    • English
    Seeking the Truth from Mobile Evidence: Basic Fundamentals, Intermediate and Advanced Overview of Current Mobile Forensic Investigations will assist those who have never collected mobile evidence and augment the work of professionals who are not currently performing advanced destructive techniques. This book is intended for any professional that is interested in pursuing work that involves mobile forensics, and is designed around the outcomes of criminal investigations that involve mobile digital evidence. Author John Bair brings to life the techniques and concepts that can assist those in the private or corporate sector. Mobile devices have always been very dynamic in nature. They have also become an integral part of our lives, and often times, a digital representation of where we are, who we communicate with and what we document around us. Because they constantly change features, allow user enabled security, and or encryption, those employed with extracting user data are often overwhelmed with the process. This book presents a complete guide to mobile device forensics, written in an easy to understand format.

  • Ambulatory Surgery Center Safety Guidebook

    Managing Code Requirements for Fire and Life Safety
    • 1st Edition
    • Dale Lyman
    • English
    Ambulatory Surgery Center Safety Guidebook: Managing Code Requirements for Fire and Life Safety helps guide ASC administrative and security staff meet the requirements and standards of both federal and state authorities, including the Life Safety Code, a critical designation for facilities participating in Medicare (CMS) funding reimbursement. Designed for easy reference, the book assumes no code knowledge on the part of ASC staff, and provides guidance for the policies, emergency plans, drills, inspection, testing and maintenance of fire protection and building systems necessary for meeting Life Safety Code requirements. Through sample checklists and log sheets, and a systematic process for completing required documentation, the reader is directed through the crucial steps to achieving code compliance. The guide provides ASC staff the knowledge necessary to be in compliance with the Life Safety Code without the need for an outside security or safety consultant. Through this compliance, facilities remain licensed and qualified for Medicare reimbursement, ultimately improving the financial success of the ASC.

  • Deception in the Digital Age

    Exploiting and Defending Human Targets through Computer-Mediated Communications
    • 1st Edition
    • Cameron H. Malin + 3 more
    • English
    Deception in the Digital Age: Exploiting and Defending Human Targets Through Computer-Mediated Communication guides readers through the fascinating history and principles of deception—and how these techniques and stratagems are now being effectively used by cyber attackers. Users will find an in-depth guide that provides valuable insights into the cognitive, sensory and narrative bases of misdirection, used to shape the targeted audience’s perceptions and beliefs. The text provides a detailed analysis of the psychological, sensory, sociological, and technical precepts that reveal predictors of attacks—and conversely postmortem insight about attackers—presenting a unique resource that empowers readers to observe, understand and protect against cyber deception tactics. Written by information security experts with real-world investigative experience, the text is the most instructional book available on the subject, providing practical guidance to readers with rich literature references, diagrams and examples that enhance the learning process.

  • Cell Phone Location Evidence for Legal Professionals

    Understanding Cell Phone Location Evidence from the Warrant to the Courtroom
    • 1st Edition
    • Larry Daniel
    • English
    Cell Phone Location Evidence for Legal Professionals: Understanding Cell Phone Location Evidence from the Warrant to the Courtroom is a guide, in plain language, for digital forensics professionals, attorneys, law enforcement professionals and students interested in the sources, methods and evidence used to perform forensic data analysis of cell phones, call detail records, real time ping records and geo-location data obtained from cellular carriers and cell phones. Users will gain knowledge on how to identify evidence and how to properly address it for specific cases, including challenges to the methods of analysis and to the qualifications of persons who would testify about this evidence. This book is intended to provide digital forensics professionals, legal professionals and others with an interest in this field the information needed to understand what each type of evidence means, where it comes from, how it is analyzed and presented, and how it is used in various types of civil and criminal litigation. Relevant case law are included, or referred to, as appropriate throughout this book to give the reader an understanding of the legal history of this type of evidence and how it is being addressed by various state and federal courts.

  • From Corporate Security to Commercial Force

    A Business Leader’s Guide to Security Economics
    • 1st Edition
    • Marko Cabric
    • English
    From Corporate Security to Commercial Force: A Business Leader’s Guide to Security Economics addresses important issues, such as understanding security related costs, the financial advantages of security, running an efficient security organization, and measuring the impact of incidents and losses. The book guides readers in identifying, understanding, quantifying, and measuring the direct and economic benefits of security for a business, its processes, products, and consequently, profits. It quantifies the security function and explains the never-before analyzed tangible advantages of security for core business processes. Topics go far beyond simply proving that security is an expense for a company by providing business leaders and sales and marketing professionals with actual tools that can be used for advertising products, improving core services, generating sales, and increasing profits.

  • Cybercrime and Business

    Strategies for Global Corporate Security
    • 1st Edition
    • Sanford Moskowitz
    • English
    Cybercrime and Business: Strategies for Global Corporate Security examines the three most prevalent cybercrimes afflicting today’s corporate security professionals: piracy, espionage, and computer hacking. By demonstrating how each of these threats evolved separately and then converged to form an ultra-dangerous composite threat, the book discusses the impact the threats pose and how the very technologies that created the problem can help solve it. Cybercrime and Business then offers viable strategies for how different types of businesses—from large multinationals to small start-ups—can respond to these threats to both minimize their losses and gain a competitive advantage. The book concludes by identifying future technological threats and how the models presented in the book can be applied to handling them.

  • Security Operations Center Guidebook

    A Practical Guide for a Successful SOC
    • 1st Edition
    • Gregory Jarpey + 1 more
    • English
    Security Operations Center Guidebook: A Practical Guide for a Successful SOC provides everything security professionals need to create and operate a world-class Security Operations Center. It starts by helping professionals build a successful business case using financial, operational, and regulatory requirements to support the creation and operation of an SOC. It then delves into the policies and procedures necessary to run an effective SOC and explains how to gather the necessary metrics to persuade upper management that a company’s SOC is providing value. This comprehensive text also covers more advanced topics, such as the most common Underwriter Laboratory (UL) listings that can be acquired, how and why they can help a company, and what additional activities and services an SOC can provide to maximize value to a company.

  • Research Methods for Cyber Security

    • 1st Edition
    • Thomas W. Edgar + 1 more
    • English
    Research Methods for Cyber Security teaches scientific methods for generating impactful knowledge, validating theories, and adding critical rigor to the cyber security field. This book shows how to develop a research plan, beginning by starting research with a question, then offers an introduction to the broad range of useful research methods for cyber security research: observational, mathematical, experimental, and applied. Each research method chapter concludes with recommended outlines and suggested templates for submission to peer reviewed venues. This book concludes with information on cross-cutting issues within cyber security research. Cyber security research contends with numerous unique issues, such as an extremely fast environment evolution, adversarial behavior, and the merging of natural and social science phenomena. Research Methods for Cyber Security addresses these concerns and much more by teaching readers not only the process of science in the context of cyber security research, but providing assistance in execution of research as well.

  • Digital Forensics Trial Graphics

    Teaching the Jury through Effective Use of Visuals
    • 1st Edition
    • John Sammons + 1 more
    • English
    Digital Forensics Trial Graphics: Teaching the Jury Through Effective Use of Visuals helps digital forensic practitioners explain complex technical material to laypeople (i.e., juries, judges, etc.). The book includes professional quality illustrations of technology that help anyone understand the complex concepts behind the science. Users will find invaluable information on theory and best practices along with guidance on how to design and deliver successful explanations.

  • Homeland Security

    The Essentials
    • 2nd Edition
    • George Haddow + 2 more
    • English
    Homeland Security: The Essentials, Second Edition concisely outlines the risks facing the US today and the structures we have put in place to deal with them. The authors expertly delineate the bedrock principles of preparing for, mitigating, managing, and recovering from emergencies and disasters. From cyberwarfare, to devastating tornadoes, to car bombs, all hazards currently fall within the purview of the Department of Homeland Security, yet the federal role must be closely aligned with the work of partners in the private sector. The book lays a solid foundation for the study of present and future threats to our communities and to national security, also challenging readers to imagine more effective ways to manage these risks.

  • Sports Travel Security

    • 1st Edition
    • Peter Tarlow
    • English
    Sports Team Security examines the security needs for sports teams and events of all sizes. This groundbreaking book provides a fundamental model for sports team security that can be applied almost universally, from youth sports to the Super Bowl and World Cup. The book develops, compares, and contrasts current methodologies in sports security, for both amateur and professional athletes, examining which paradigms work best and under which circumstances. This valuable information is applicable to nearly anyone involved in the safety of athletes, including event managers, law enforcement, parents, school administrators and coaches, security practitioners, tourism industry professionals, and legal professionals. It explores areas rarely investigated, providing key advice for creating best practices and guidelines in sports team security.

  • The Manager's Handbook for Corporate Security

    Establishing and Managing a Successful Assets Protection Program
    • 2nd Edition
    • Edward Halibozek + 1 more
    • English
    The Manager’s Handbook for Corporate Security: Establishing and Managing a Successful Assets Protection Program, Second Edition, guides readers through today’s dynamic security industry, covering the multifaceted functions of corporate security and providing managers with advice on how to grow not only their own careers, but also the careers of those they manage on a daily basis. This accessible, updated edition provides an implementation plan for establishing a corporate security program, especially for those who have little or no knowledge on the topic. It also includes information for intermediate and advanced professionals who are interested in learning more about general security, information systems security, and information warfare.

  • Integrating Emergency Management and Disaster Behavioral Health

    One Picture through Two Lenses
    • 1st Edition
    • Brian Flynn + 1 more
    • English
    Integrating Emergency Management and Disaster Behavioral Health identifies the most critical areas of integration between the profession of emergency management and the specialty of disaster behavioral health, providing perspectives from both of these critical areas, and also including very practical advice and examples on how to address key topics. Each chapter features primary text written by a subject matter expert from a related field that is accompanied by a comment by another profession that is then illustrated with a case study of, or a suggested method for, collaboration.

  • Federal Cloud Computing

    The Definitive Guide for Cloud Service Providers
    • 2nd Edition
    • Matthew Metheny
    • English
    Federal Cloud Computing: The Definitive Guide for Cloud Service Providers, Second Edition offers an in-depth look at topics surrounding federal cloud computing within the federal government, including the Federal Cloud Computing Strategy, Cloud Computing Standards, Security and Privacy, and Security Automation. You will learn the basics of the NIST risk management framework (RMF) with a specific focus on cloud computing environments, all aspects of the Federal Risk and Authorization Management Program (FedRAMP) process, and steps for cost-effectively implementing the Assessment and Authorization (A&A) process, as well as strategies for implementing Continuous Monitoring, enabling the Cloud Service Provider to address the FedRAMP requirement on an ongoing basis. This updated edition will cover the latest changes to FedRAMP program, including clarifying guidance on the paths for Cloud Service Providers to achieve FedRAMP compliance, an expanded discussion of the new FedRAMP Security Control, which is based on the NIST SP 800-53 Revision 4, and maintaining FedRAMP compliance through Continuous Monitoring. Further, a new chapter has been added on the FedRAMP requirements for Vulnerability Scanning and Penetration Testing.

  • Terrorism and Homeland Security

    An Introduction with Applications
    • 2nd Edition
    • Philip Purpura + 1 more
    • English
    Terrorism and Homeland Security: An Introduction with Applications, Second Edition provides a comprehensive overview of terrorism, public and private sector counterterrorism and all hazards emergency management. The book presents national, state and local perspectives, and up-to-date information including the reorganization of the Department of Homeland Security, the renewed Patriot Act and intelligence reform.A wide range of issues are discussed, including such topics as the effectiveness of terrorism, weapons of mass destruction, the measurement of terrorism, victims of terrorism, privatization of counterterrorism, the code war, the merging of life safety and public safety, recent disasters, the role of the military, preemptive force, Homeland Security and national security versus due process models, pandemics and wars of globalization. The book emphasizes practical issues handled by senior government officials, private sector executives, security practitioners and a variety of first responders.

  • Certifiable Software Applications 2

    Support Processes
    • 1st Edition
    • Jean-Louis Boulanger
    • English
    Certifiable Software Applications 2: Support Processes explains the process to achieve a certifiable application. This concerns several major topics, skill management, data preparation, requirement management, software verification, and software validation. In addition, analysis of the impact of the use of COTS and pre-existing software on certifiable software is presented. Finally, the last support process concerns the management of commercial tools, the creation of a specific tools, and therefore the qualification of tools, which is based on their impact on the final software.

  • Advanced Persistent Security

    A Cyberwarfare Approach to Implementing Adaptive Enterprise Protection, Detection, and Reaction Strategies
    • 1st Edition
    • Ira Winkler + 1 more
    • English
    Advanced Persistent Security covers secure network design and implementation, including authentication, authorization, data and access integrity, network monitoring, and risk assessment. Using such recent high profile cases as Target, Sony, and Home Depot, the book explores information security risks, identifies the common threats organizations face, and presents tactics on how to prioritize the right countermeasures. The book discusses concepts such as malignant versus malicious threats, adversary mentality, motivation, the economics of cybercrime, the criminal infrastructure, dark webs, and the criminals organizations currently face.

  • Security Metrics Management

    Measuring the Effectiveness and Efficiency of a Security Program
    • 2nd Edition
    • Gerald L. Kovacich + 1 more
    • English
    Security Metrics Management, Measuring the Effectiveness and Efficiency of a Security Program, Second Edition details the application of quantitative, statistical, and/or mathematical analyses to measure security functional trends and workload, tracking what each function is doing in terms of level of effort (LOE), costs, and productivity. This fully updated guide is the go-to reference for managing an asset protection program and related security functions through the use of metrics. It supports the security professional’s position on budget matters, helping to justify the cost-effectiveness of security-related decisions to senior management and other key decision-makers. The book is designed to provide easy-to-follow guidance, allowing security professionals to confidently measure the costs of their assets protection program - their security program - as well as its successes and failures. It includes a discussion of how to use the metrics to brief management, build budgets, and provide trend analyses to develop a more efficient and effective asset protection program.

  • Effective Physical Security

    • 5th Edition
    • Lawrence J. Fennelly
    • English
    Effective Physical Security, Fifth Edition is a best-practices compendium that details the essential elements and latest developments in physical security protection. This new edition is completely updated, with new chapters carefully selected from the author’s work that set the standard. This book contains important coverage of environmental design, security surveys, locks, lighting, and CCTV, the latest ISO standards for risk assessment and risk management, physical security planning, network systems infrastructure, and environmental design.

  • Physical Security: 150 Things You Should Know

    • 2nd Edition
    • Lawrence J. Fennelly + 1 more
    • English
    Physical Security: 150 Things You Should Know, Second Edition is a useful reference for those at any stage of their security career. This practical guide covers the latest technological trends for managing the physical security needs of buildings and campuses of all sizes. Through anecdotes, case studies, and documented procedures, the authors have amassed the most complete collection of information on physical security available. Security practitioners of all levels will find this book easy to use as they look for practical tips to understand and manage the latest physical security technologies, such as biometrics, IP video, video analytics, and mass notification, as well as the latest principles in access control, command and control, perimeter protection, and visitor management.

  • Contemporary Digital Forensic Investigations of Cloud and Mobile Applications

    • 1st Edition
    • Kim-Kwang Raymond Choo + 1 more
    • English
    Contemporary Digital Forensic Investigations of Cloud and Mobile Applications comprehensively discusses the implications of cloud (storage) services and mobile applications on digital forensic investigations. The book provides both digital forensic practitioners and researchers with an up-to-date and advanced knowledge of collecting and preserving electronic evidence from different types of cloud services, such as digital remnants of cloud applications accessed through mobile devices. This is the first book that covers the investigation of a wide range of cloud services. Dr. Kim-Kwang Raymond Choo and Dr. Ali Dehghantanha are leading researchers in cloud and mobile security and forensics, having organized research, led research, and been published widely in the field. Users will gain a deep overview of seminal research in the field while also identifying prospective future research topics and open challenges.

  • Building a Practical Information Security Program

    • 1st Edition
    • Jason Andress + 1 more
    • English
    Building a Practical Information Security Program provides users with a strategic view on how to build an information security program that aligns with business objectives. The information provided enables both executive management and IT managers not only to validate existing security programs, but also to build new business-driven security programs. In addition, the subject matter supports aspiring security engineers to forge a career path to successfully manage a security program, thereby adding value and reducing risk to the business. Readers learn how to translate technical challenges into business requirements, understand when to "go big or go home," explore in-depth defense strategies, and review tactics on when to absorb risks. This book explains how to properly plan and implement an infosec program based on business strategy and results.

  • Handbook of System Safety and Security

    Cyber Risk and Risk Management, Cyber Security, Threat Analysis, Functional Safety, Software Systems, and Cyber Physical Systems
    • 1st Edition
    • Edward Griffor
    • English
    Handbook of System Safety and Security: Cyber Risk and Risk Management, Cyber Security, Adversary Modeling, Threat Analysis, Business of Safety, Functional Safety, Software Systems, and Cyber Physical Systems presents an update on the world's increasing adoption of computer-enabled products and the essential services they provide to our daily lives. The tailoring of these products and services to our personal preferences is expected and made possible by intelligence that is enabled by communication between them. Ensuring that the systems of these connected products operate safely, without creating hazards to us and those around us, is the focus of this book, which presents the central topics of current research and practice in systems safety and security as it relates to applications within transportation, energy, and the medical sciences. Each chapter is authored by one of the leading contributors to the current research and development on the topic. The perspective of this book is unique, as it takes the two topics, systems safety and systems security, as inextricably intertwined. Each is driven by concern about the hazards associated with a system’s performance.

  • Integrating Python with Leading Computer Forensics Platforms

    • 1st Edition
    • Chet Hosmer
    • English
    Integrating Python with Leading Computer Forensic Platforms takes a definitive look at how and why the integration of Python advances the field of digital forensics. In addition, the book includes practical, never seen Python examples that can be immediately put to use. Noted author Chet Hosmer demonstrates how to extend four key Forensic Platforms using Python, including EnCase by Guidance Software, MPE+ by AccessData, The Open Source Autopsy/SleuthKit by Brian Carrier and WetStone Technologies, and Live Acquisition and Triage Tool US-LATT. This book is for practitioners, forensic investigators, educators, students, private investigators, or anyone advancing digital forensics for investigating cybercrime. Additionally, the open source availability of the examples allows for sharing and growth within the industry. This book is the first to provide details on how to directly integrate Python into key forensic platforms.

  • Penetration Tester's Open Source Toolkit

    • 4th Edition
    • Jeremy Faircloth
    • English
    Continuing a tradition of excellent training on open source tools, Penetration Tester’s Open Source Toolkit, Fourth Edition is a great reference to the open source tools available today and teaches you how to use them by demonstrating them in real-world examples. This book expands upon existing documentation so that a professional can get the most accurate and in-depth test results possible. Real-life scenarios are a major focus so that the reader knows which tool to use and how to use it for a variety of situations. This updated edition covers the latest technologies and attack vectors, including industry specific case studies and complete laboratory setup. Great commercial penetration testing tools can be very expensive and sometimes hard to use or of questionable accuracy. This book helps solve both of these problems. The open source, no-cost penetration testing tools presented work as well or better than commercial tools and can be modified by the user for each situation if needed. Many tools, even ones that cost thousands of dollars, do not come with any type of instruction on how and in which situations the penetration tester can best use them. Penetration Tester's Open Source Toolkil, Fourth Edition bridges this gap providing the critical information that you need.

  • Mobile Security and Privacy

    Advances, Challenges and Future Research Directions
    • 1st Edition
    • Man Ho Au + 1 more
    • English
    Mobile Security and Privacy: Advances, Challenges and Future Research Directions provides the first truly holistic view of leading edge mobile security research from Dr. Man Ho Au and Dr. Raymond Choo—leading researchers in mobile security. Mobile devices and apps have become part of everyday life in both developed and developing countries. As with most evolving technologies, mobile devices and mobile apps can be used for criminal exploitation. Along with the increased use of mobile devices and apps to access and store sensitive, personally identifiable information (PII) has come an increasing need for the community to have a better understanding of the associated security and privacy risks. Drawing upon the expertise of world-renowned researchers and experts, this volume comprehensively discusses a range of mobile security and privacy topics from research, applied, and international perspectives, while aligning technical security implementations with the most recent developments in government, legal, and international environments. The book does not focus on vendor-specific solutions, instead providing a complete presentation of forward-looking research in all areas of mobile security. The book will enable practitioners to learn about upcoming trends, scientists to share new directions in research, and government and industry decision-makers to prepare for major strategic decisions regarding implementation of mobile technology security and privacy. In addition to the state-of-the-art research advances, this book also discusses prospective future research topics and open challenges.

  • Eleventh Hour CISSP®

    Study Guide
    • 3rd Edition
    • Joshua Feldman + 2 more
    • English
    Eleventh Hour CISSP: Study Guide, Third Edition provides readers with a study guide on the most current version of the Certified Information Systems Security Professional exam. This book is streamlined to include only core certification information, and is presented for ease of last-minute studying. Main objectives of the exam are covered concisely with key concepts highlighted. The CISSP certification is the most prestigious, globally-recognized, vendor neutral exam for information security professionals. Over 100,000 professionals are certified worldwide, with many more joining their ranks. This new third edition is aligned to cover all of the material in the most current version of the exam’s Common Body of Knowledge. All domains are covered as completely and concisely as possible, giving users the best possible chance of acing the exam.

  • Coding for Penetration Testers

    Building Better Tools
    • 2nd Edition
    • Jason Andress + 1 more
    • English
    Coding for Penetration Testers: Building Better Tools, Second Edition provides readers with an understanding of the scripting languages that are commonly used when developing tools for penetration testing, also guiding users through specific examples of custom tool development and the situations where such tools might be used. While developing a better understanding of each language, the book presents real-world scenarios and tool development that can be incorporated into a tester's toolkit. This completely updated edition focuses on an expanded discussion on the use of Powershell, and includes practical updates to all tools and coverage.

  • Practical Aviation Security

    Predicting and Preventing Future Threats
    • 3rd Edition
    • Jeffrey C. Price + 1 more
    • English
    Practical Aviation Security: Predicting and Preventing Future Threats, Third Edition is a complete guide to the aviation security system, from crucial historical events to the policies, policymakers, and major terrorist and criminal acts that have shaped the procedures in use today, as well as the cutting edge technologies that are shaping the future. This text equips readers working in airport security or other aviation management roles with the knowledge to implement effective security programs, meet international guidelines, and responsibly protect facilities or organizations of any size. Using case studies and practical security measures now in use at airports worldwide, readers learn the effective methods and the fundamental principles involved in designing and implementing a security system. The aviation security system is comprehensive and requires continual focus and attention to stay a step ahead of the next attack. Practical Aviation Security, Third Edition, helps prepare practitioners to enter the industry and helps seasoned professionals prepare for new threats and prevent new tragedies.

  • Audio Content Security

    Attack Analysis on Audio Watermarking
    • 1st Edition
    • Sogand Ghorbani + 1 more
    • English
    Audio Content Security: Attack Analysis on Audio Watermarking describes research using a common audio watermarking method for four different genres of music, also providing the results of many test attacks to determine the robustness of the watermarking in the face of those attacks. The results of this study can be used for further studies and to establish the need to have a particular way of audio watermarking for each particular group of songs, each with different characteristics. An additional aspect of this study tests and analyzes two parameters of audio host file and watermark on a specific evaluation method (PSNR) for audio watermarking.

  • Certifiable Software Applications 1

    Main Processes
    • 1st Edition
    • Jean-Louis Boulanger
    • English
    Certifiable Software Applications 1: Main Processes is dedicated to the establishment of quality assurance and safety assurance. It establishes the context for achieving a certifiable software application. In it, the author covers recent developments such as the module, component and product line approach. Applicable standards are presented and security principles are described and discussed. Finally, the requirements for mastering quality and configuration are explained. In this book the reader will find the fundamental practices from the field and an introduction to the concept of software application.

  • Information Security Science

    Measuring the Vulnerability to Data Compromises
    • 1st Edition
    • Carl Young
    • English
    Information Security Science: Measuring the Vulnerability to Data Compromises provides the scientific background and analytic techniques to understand and measure the risk associated with information security threats. This is not a traditional IT security book since it includes methods of information compromise that are not typically addressed in textbooks or journals. In particular, it explores the physical nature of information security risk, and in so doing exposes subtle, yet revealing, connections between information security, physical security, information technology, and information theory. This book is also a practical risk management guide, as it explains the fundamental scientific principles that are directly relevant to information security, specifies a structured methodology to evaluate a host of threats and attack vectors, identifies unique metrics that point to root causes of technology risk, and enables estimates of the effectiveness of risk mitigation. This book is the definitive reference for scientists and engineers with no background in security, and is ideal for security analysts and practitioners who lack scientific training. Importantly, it provides security professionals with the tools to prioritize information security controls and thereby develop cost-effective risk management strategies.

  • Cyber Guerilla

    • 1st Edition
    • Jelle Van Haaster + 2 more
    • English
    Much as Che Guevara’s book Guerilla Warfare helped define and delineate a new type of warfare in the wake of the Cuban revolution in 1961, Cyber Guerilla will help define the new types of threats and fighters now appearing in the digital landscape. Cyber Guerilla provides valuable insight for infosec professionals and consultants, as well as government, military, and corporate IT strategists who must defend against myriad threats from non-state actors. The authors take readers inside the operations and tactics of cyber guerillas, who are changing the dynamics of cyber warfare and information security through their unconventional strategies and threats. This book draws lessons from the authors’ own experiences but also from illustrative hacker groups such as Anonymous, LulzSec and Rebellious Rose.

  • Executing Windows Command Line Investigations

    While Ensuring Evidentiary Integrity
    • 1st Edition
    • Chet Hosmer + 2 more
    • English
    The book Executing Windows Command Line Investigations targets the needs of cyber security practitioners who focus on digital forensics and incident response. These are the individuals who are ultimately responsible for executing critical tasks such as incident response; forensic analysis and triage; damage assessments; espionage or other criminal investigations; malware analysis; and responding to human resource violations. The authors lead readers through the importance of Windows CLI, as well as optimal configuration and usage. Readers will then learn the importance of maintaining evidentiary integrity, evidence volatility, and gain appropriate insight into methodologies that limit the potential of inadvertently destroying or otherwise altering evidence. Next, readers will be given an overview on how to use the proprietary software that accompanies the book as a download from the companion website. This software, called Proactive Incident Response Command Shell (PIRCS), developed by Harris Corporation provides an interface similar to that of a Windows CLI that automates evidentiary chain of custody and reduces human error and documentation gaps during incident response.

Related subjects