Information Assurance Handbook: Effective Computer Security and Risk Management Strategies

Posted on by Ben Rothke

The notion of information assurance is not necessarily synonymous with information security. In Information Assurance Handbook: Effective Computer Security and Risk Management Strategies, (McGraw-Hill Education ISBN-13: 978-0071821650), authors Corey Schou and Steven Hernandez examine the subtle differences.


Information assurance is about assuring information and managing risks related to all aspects of the data. It takes a broader approach to the topic, as opposed to just focusing on security from a policy and firewall perspective.

This book provides a look at the tools and techniques that are needed to protect data. The dense volume covers the entire range of information assurance topics, including basic principles and concepts, information assurance management systems, information assurance in system development, and acquisition and information assurance awareness, training, and education. The book also reviews various information security monitoring tools and how to use them.

Those looking for an excellent reference on the topic that is both broad and deep will find that that this book  fits the bill.

Ben Rothke

Senior Information Security Manager, Tapad

Business Perspectives

risk management metrics

Blogs posted to the website are intended for educational purposes only and do not replace independent professional judgment. Statements of fact and opinions expressed are those of the blog author individually and, unless expressly stated to the contrary, are not the opinion or position of RSA Conference™, or any other co-sponsors. RSA Conference does not endorse or approve, and assumes no responsibility for, the content, accuracy or completeness of the information presented in this blog.

Share With Your Community

Related Blogs