Request for consultation

Thanks for your request. You’ll soon be chatting with a consultant to get the answers you need.
Your form is submitting...
{{formPostErrorMessage.message}} [{{formPostErrorMessage.code}}]
First Name is required. 'First Name' must contain at least 0 characters 'First Name' cannot exceed 0 characters Please enter a valid First Name
Last Name is required. 'Last Name' must contain at least 0 characters 'Last Name' cannot exceed 0 characters Please enter a valid Last Name
Email Address is required. 'Email Address' must contain at least 0 characters 'Email Address' cannot exceed 0 characters Please enter a valid Email Address
Institution is required.
Discipline is required.
Country is required.
State is required.
Cengage, at your service! How can we best meet your needs? is required.
Why are you contacting us today? is required. 'Why are you contacting us today?' must contain at least 0 characters 'Why are you contacting us today?' cannot exceed 0 characters Please enter a valid Why are you contacting us today?
See Most Recent Edition

Management of Information Security, 6th Edition

Michael E. Whitman, Herbert J. Mattord

  • Copyright 2019
  • {{checkPublicationMessage('Published', '2018-05-03T00:00:00+0000')}}
Starting At $74.95 See pricing and ISBN options
Instructor Next Steps
Students: Buy now
Management of Information Security 6th Edition by Michael E. Whitman/Herbert J. Mattord
Quick Navigation

Overview

Equip your students with a management-focused overview of information security as well as the tools to effectively administer it with Whitman/Mattord's MANAGEMENT OF INFORMATION SECURITY, Sixth Edition. More than ever, we need to prepare information security management students to build and staff security programs capable of securing systems and networks to meet the challenges in a world where continuously emerging threats, ever-present attacks and the success of criminals illustrate weaknesses in current information technologies. This text offers an exceptional blend of skills and experiences to administer and manage the more secure computing environments that organizations need. Reflecting the latest developments from the field, it includes updated coverage of NIST, ISO and security governance along with emerging concerns like Ransomware, Cloud Computing and the Internet of Things.

{{readMore['overview'] ? 'Read More' : 'Read Less'}}

Meet the Authors

{{collapseContainerClosed['meet-the-author'] ? 'Show More' : 'Show Less'}}

Michael E. Whitman

Michael E. Whitman, Ph.D., C.I.S.M., C.I.S.S.P., is the executive director of the Institute for Cybersecurity Workforce Development and a professor of information security at Kennesaw State University. In 2004, 2007, 2012 and 2015, under Dr. Whitman's direction the Center for Information Security Education spearheaded K.S.U.’s successful bid for the prestigious National Center of Academic Excellence recognitions (CAE/IAE and CAE/CDE), awarded jointly by the Department of Homeland Security and the National Security Agency. Dr. Whitman is also the editor-in-chief of the Journal of Cybersecurity Education and Research and Practice and director of the Southeast Collegiate Cyber Defense Competition. Dr. Whitman is an active researcher and author in information security policy, threats, curriculum development and ethical computing. He currently teaches graduate and undergraduate courses in information security. Dr. Whitman has several information security textbooks currently in print, including PRINCIPLES OF INFORMATION SECURITY; PRINCIPLES OF INCIDENT RESPONSE AND DISASTER RECOVERY; MANAGEMENT OF INFORMATION SECURITY; READINGS AND CASES IN THE MANAGEMENT OF INFORMATION SECURITY, VOLUMES I AND II; THE HANDS-ON INFORMATION SECURITY LAB MANUAL; THE GUIDE TO NETWORK SECURITY and THE GUIDE TO FIREWALLS AND NETWORK SECURITY. He has published articles in Information Systems Research, the Communications of the ACM, the Journal of International Business Studies, Information and Management and the Journal of Computer Information Systems. Dr. Whitman is a member of the Information Systems Security Association, ISACA and the Association for Information Systems. Previously, Dr. Whitman served the U.S. Army as an armored cavalry officer with additional duties as the automated data processing system security officer (ADPSSO).

Herbert J. Mattord

Herbert Mattord, Ph.D., C.I.S.M., C.I.S.S.P., completed 24 years of IT industry experience as an application developer, database administrator, project manager and information security practitioner before joining the faculty at Kennesaw State University, where he serves as a professor of information security and assurance and cybersecurity. Dr. Mattord currently teaches graduate and undergraduate courses. He is also a senior editor of the Journal of Cybersecurity Education, Research and Practice. He and Dr. Michael Whitman have authored PRINCIPLES OF INFORMATION SECURITY; PRINCIPLES OF INCIDENT RESPONSE AND DISASTER RECOVERY; MANAGEMENT OF INFORMATION SECURITY; READINGS AND CASES IN THE MANAGEMENT OF INFORMATION SECURITY; THE GUIDE TO NETWORK SECURITY and THE HANDS-ON INFORMATION SECURITY LAB MANUAL. Dr. Mattord is an active researcher, author and consultant in information security management and related topics. He has published articles in the Information Resources Management Journal, Journal of Information Security Education, the Journal of Executive Education and the International Journal of Interdisciplinary Telecommunications and Networking. Dr. Mattord is a member of the Information Systems Security Association, ISACA, and the Association for Information Systems. During his career as an IT practitioner, Dr. Mattord was an adjunct professor at Kennesaw State University, Southern Polytechnic State University, Austin Community College and Texas State University: San Marcos. He was formerly the manager of corporate information technology security at Georgia-Pacific Corporation, where he acquired much of the practical knowledge found in this and his other textbooks.

What's New

{{collapseContainerClosed['whats-new'] ? 'Show More' : 'Show Less'}}
  • MINDTAP EMPOWERS STUDENTS WITH A PERSONALIZED LEARNING EXPERIENCE. Equipping students with the skills they need to succeed in today's workforce, MindTap guides learners in analyzing, applying and improving thinking -- while allowing instructors to measure skills and outcomes with ease. Through hands-on activities, real-life relevance and mastery of difficult concepts, MindTap helps students become the critical thinkers, troubleshooters and creative problem-solvers that employers want.
  • CURRICULUM MAPS TO NATIONAL INITIATIVE FOR CYBERSECURITY EDUCATION STANDARDS. For interested institutions, curriculum mapping to the newly released National Initiative for Cybersecurity Education (NICE) standards is available with this edition.
  • UP-TO-THE-MINUTE COVERAGE. Reflecting the latest advancements in the field, the Sixth Edition presents the most current information on NIST, ISO, security governance and other relevant changes related to today's information security.
  • ENHANCED COVERAGE. Chapter 1: "Introduction to Management of Information Security" includes expanded discussions and increased coverage of the latest threats and trends.
  • UPDATED. Chapter 2: "Compliance: Law and Ethics" includes coverage of new and key laws, including breach laws.
  • MORE INFORMATION. Chapter 4: "Information Security Policy" has been enhanced and expanded.
  • REVISED AND RESTRUCTURED. Chapter 8 now emphasizes Security Management Models.
  • EXPANDED COVERAGE. Chapter 9: "Security Management Practices" now includes coverage of Personnel Security issues.
  • ALL-NEW CHAPTER. Chapter 11: "Security Maintenance and the Management of Digital Forensics" is dedicated to this growing field.
  • NEW TOPICS. Chapter 12: "Protection Mechanisms" now includes expanded coverage of managing technology.

Features

{{collapseContainerClosed['features'] ? 'Show More' : 'Show Less'}}
  • CERTIFIED INFORMATION SYSTEMS SECURITY PROFESSIONALS (CISSP) AND CERTIFIED INFORMATION SECURITY MANAGERS (CISM) INFORMATION INTEGRATED THROUGHOUT. The authors have carefully incorporated both CISSP and CISM bodies of knowledge throughout the text to prepare your students for certification. Chapter scenarios follow a fictional company as it encounters various information security issues. Meaningful group discussion questions follow each scenario to prompt lively classroom dialogue and debate.
  • WRITTEN BY SECURITY PROFESSIONALS. This text and its ancillary features were meticulously designed by security professionals who are also teaching faculty members. Their experiences and expertise -- from classroom and industry -- are woven throughout chapter content to provide instructors with a well-designed, comprehensive security management instructional tool, complete with modern virtual ancillaries and teaching support aids. The text reflects key industry trends and issues, while facilitating the organization, delivery and assessment of student knowledge.
  • "VIEWPOINT" ESSAYS ILLUSTRATE INTRIGUING TOPICS. Written by security practitioners and academics, Viewpoint essays in each chapter use real-world examples to illustrate chapter concepts at work in today's business environments.
  • ACTIVITIES, QUESTIONS AND PROJECTS REINFORCE SKILLS. Your students have numerous opportunities to apply what they are learning with in-depth review questions, hands-on activities and case projects in every chapter.
  • EMPHASIS ON KEY EXECUTIVE AND MANAGERIAL ASPECTS OF INFORMATION SECURITY. As they progress through the text, students build on their strong foundation of key concepts and become proficient in the most important areas of information security and management.

Table of Contents

{{collapseContainerClosed['table-of-contents'] ? 'Show More' : 'Show Less'}}
Unit I: FOUNDATIONS OF INFORMATION SECURITY.
1. Introduction to Management of Information Security.
2. Compliance: Law and Ethics.
Unit II: STRATEGIC INFORMATION SECURITY MANAGEMENT.
3. Governance and Strategic Planning for Security.
4. Information Security Policy.
5. Developing the Security Program.
6. Risk Management: Identifying and Assessing Risk.
7. Risk Management: Controlling Risk.
Unit III: OPERATIONAL INFORMATION SECURITY MANAGEMENT.
8. Security Management Models.
9. Security Management Practices.
10. Planning for Contingencies.
11. Security Maintenance and the Management of Digital Forensics.
12. Protection Mechanisms.

Compare Buying Options

{{collapseContainerClosed['compare-buying-options'] ? 'Show More' : 'Show Less'}}

MindTap Options

{{collapseContainerClosed['detail_1'] ? 'Show More' : 'Show Less'}}
MindTap
Each MindTap product offers the full, mobile-ready textbook combined with superior and proven learning tools at one affordable price. Students who purchase digital access can add a print option at any time when a print option is available for their course.

This Cengage solution can be seamlessly integrated into most Learning Management Systems (Blackboard, Brightspace by D2L, Canvas, Moodle, and more) but does require a different ISBN for access codes. Please work with your Cengage Learning Consultant to ensure the proper course set up and ordering information. For additional information, please visit the LMS Integration site.

Standalone Digital Access — Ultimate Value

Recommended and most popular

  • ISBN-10: 1337405795
  • ISBN-13: 9781337405799
  • RETAIL $84.95
Instructor Next Steps
Students: Buy now

Textbook Only Options

Traditional eBook and Print Options

{{collapseContainerClosed['detail_0'] ? 'Show More' : 'Show Less'}}

  • ISBN-10: 0357691202
  • ISBN-13: 9780357691205
  • RETAIL $74.95

  • ISBN-10: 133740571X
  • ISBN-13: 9781337405713
  • RETAIL $144.95
Instructor Next Steps
Students: Buy now

Supplements

{{collapseContainerClosed['supplements'] ? 'Show More' : 'Show Less'}}

Cengage provides a range of supplements that are updated in coordination with the main title selection. For more information about these supplements, contact your Learning Consultant.

FOR STUDENTS

MindTap for Whitman/Mattord's Management of Information Security, 2 terms Instant Access

ISBN: 9781337405799
MindTap Information Security for Whitman/Mattord's MANAGEMENT OF INFORMATION SECURITY is the digital learning solution that powers students from memorization to mastery. It gives you complete control of your course -- to provide engaging content, to challenge every individual and to build their confidence. Empower students to accelerate their progress with MindTap. MindTap: Powered by You. MindTap helps students master the skills they need in today's workforce. Research shows employers need critical thinkers, troubleshooters and creative problem-solvers to stay relevant in our fast-paced technology-driven world. MindTap helps you achieve this with assignments and activities that provide hands-on practice, real-life relevance and mastery of difficult concepts. Students are guided through assignments that progress from basic knowledge and understanding to more challenging problems. All MindTap activities and assignments are tied to learning objectives. The hands-on exercises provide real-life application and practice. Readings and "Whiteboard Shorts" support the lecture, while "In The News" assignments encourage students to stay current. Pre- and post-course assessments allow you to measure how much students have learned using analytics and reporting, making it easy to see where the class stands in terms of progress, engagement and completion rates. Use the content and learning path as-is or pick and choose how the material will wrap around your own. You control what the students see and when they see it. Learn more at http://www.cengage.com/mindtap/.