Cybersecurity: A Business Solution: An executive perspective on managing cyber risk

Threat Sketch, LLC
Free sample

 As a business leader, you might think you have cybersecurity under control because you have a great IT team. But managing cyber risk requires more than firewalls and good passwords. Cash flow, insurance, relationships, and legal affairs for an organization all play major roles in managing cyber risk. Treating cybersecurity as “just an IT problem” leaves an organization exposed and unprepared. Therefore, executives must take charge of the big picture.

Cybersecurity: A Business Solution is a concise guide to managing cybersecurity from a business perspective, written specifically for the leaders of small and medium businesses. In this book you will find a step-by-step approach to managing the financial impact of cybersecurity. The strategy provides the knowledge you need to steer technical experts toward solutions that fit your organization’s business mission. The book also covers common pitfalls that lead to a false sense of security. And, to help offset the cost of higher security, it explains how you can leverage investments in cybersecurity to capture market share and realize more profits.

The book’s companion material also includes an executive guide to The National Institute of Standards and Technology (NIST) Cybersecurity Framework. It offers a business level overview of the following key terms and concepts, which are central to managing its adoption.

TiersProfilesFunctionsInformative References
Read more

About the author

 Rob Arnold’s passion for computers and technology began when he was a teenager, on computers that predated the modern IBM PC. If you were around in the late 1970s and early 1980s, you may recall names like Commodore, Timex-Sinclair, and Tandy. Rob experienced them all and, like every modern-day teenage boy, he wanted to play video games. While he could not afford the luxury of a lot of games, he did not let that be an obstacle. Instead, he taught himself how to write his own games. These early forays into the world of computing lit a passion that would later define his career. But even before turning his passion into a profession, Rob had his first experience with modern computer security issues. While in college, he was helping his professor manage a small fleet of computers when he discovered a flaw that made brute-force password attacks way too easy for remote hackers. Changing the default installation for the software involved solved the issue and that became Rob’s first meaningful contribution to the software systems that underpin our modern Internet.

Upon entering the professional world of information technology, what is today known as cybersecurity, was then just part of the job. Rob spent two decades working and providing IT consulting, for companies ranging from Fortune 500 and large private firms, to small mom-and-pop shops, and everything in between. During this time, Rob wrote security policies, led companies through security-related compliance audits, and had several opportunities to do what is now called ethical hacking. One defining moment was on the morning of 9-11, when Rob was called to examine and repair the hacking of a major airline-related website that occurred while planes crashed along the East Coast. On other occasions, he was hired to crack systems for which the administrator (or root) password had been lost. Rob has solved many other problems for clients, ranging from securing executive communication from the prying eyes of untrusted IT staffers, to disaster recovery planning, to developing authentication and permission management software. 

Rob returned to graduate school in 2010 to round out his real-world experience with an academic view of the cybersecurity landscape. As part of an early assignment, he discovered, and quietly disclosed to the manufacture, a major flaw in a popular e-reader. But what really caught his attention was the concept of risk management as applied to cybersecurity. It was clear to him that risk management and the primary tool for measuring risk (a risk assessment) was well-suited to make investment decisions related to security. For his capstone project, he developed a unique strategic risk assessment that would lay the foundation for his next professional endeavor.
Rob founded Threat Sketch in 2015 and partnered with a financial and insurance risk expert to continue research and development. Their focus is on the development of cyber risk assessments to solve budgeting and planning problems for small and medium businesses. The addition of his business partner’s professional risk-analysis knowledge marked the point where academic research transitioned to a practical tool. 

The cybersecurity industry is awash with highly-technical advice, guides, and solutions. But there are few resources for business-minded owners and executives who need to understand the business aspects of managing cyber risk. This book distills Rob’s practical and academic knowledge to help the leaders and decision-makers of small companies navigate the management of cyber risk. He is particularly in tune with what resources are available to small businesses and how they need to approach cybersecurity. His background helps him understand the unique constraints businesses of this size face, having worked many years in this industry.
Read more



Additional Information

Threat Sketch, LLC
Read more
Published on
Sep 26, 2017
Read more
Read more
Read more
Read more
Business & Economics / Information Management
Computers / Security / General
Read more
Content Protection
This content is DRM protected.
Read more
Read Aloud
Available on Android devices
Read more

Reading information

Smartphones and Tablets

Install the Google Play Books app for Android and iPad/iPhone. It syncs automatically with your account and allows you to read online or offline wherever you are.

Laptops and Computers

You can read books purchased on Google Play using your computer's web browser.

eReaders and other devices

To read on e-ink devices like the Sony eReader or Barnes & Noble Nook, you'll need to download a file and transfer it to your device. Please follow the detailed Help center instructions to transfer the files to supported eReaders.
The Business-Focused, Best-Practice Guide to Succeeding with ITIL Change and Release Management

ITIL® (Information Technology Infrastructure Library®) can help organizations streamline and integrate their operations, dramatically improving efficiency and delivering greater business value. For the first time, there's a comprehensive best-practice guide to succeeding with two of the most crucial and challenging parts of ITIL: change and release management.

Leading IBM® ITIL expert and author Larry Klosterboer shares solid expertise gained from real implementations across multiple industries. He helps you decide where to invest, avoid ITIL pitfalls, and build successful, long-term processes that deliver real return on investment. You’ll find detailed guidance on each process, integrated into a comprehensive roadmap for planning, implementation, and operation–a roadmap available nowhere else.

Klosterboer offers in-depth coverage of the crucial issues every implementer will face, including make-or-break challenges most consultants can’t or won’t talk about. For example, he demonstrates how to set a reasonable project scope, migrate data, execute successful pilot programs, and continually improve quality once ITIL practices are in place.

This book’s practical insights will be invaluable to every IT executive, professional, and user who wants to bring their current change and release practices in line with ITIL–and transform them from a source of frustration into a source of value.

Coverage includes

Discovering and managing your change and release management requirements Identifying the resources you’ll need to succeed Building comprehensive schedules for executing change/release management projects Moving from planning to real-world implementation Choosing the right tools–or modifying the tools you’ve already invested in Using change/release management to facilitate auditing and ensure compliance Leveraging the full business benefits of mature change/release management processes

Covers ITIL version 3

Seasoned Google execs Eric Schmidt and Jonathan Rosenberg provide an insider's guide to Google-from the business history and corporate strategy to developing a new managment philosophy and creating a workplace culture where innovation and creativity thrive.

Google Executive Chairman and ex-CEO Eric Schmidt and former SVP of Products Jonathan Rosenberg came to Google over a decade ago as proven technology executives. At the time, the company was already well-known for doing things differently, reflecting the visionary-and frequently contrarian-principles of founders Larry Page and Sergey Brin. If Eric and Jonathan were going to succeed, they realized they would have to relearn everything they thought they knew about management and business.

Today, Google is a global icon that regularly pushes the boundaries of innovation in a variety of fields. How Google Works is an entertaining, page-turning primer containing lessons that Eric and Jonathan learned as they helped build the company. The authors explain how technology has shifted the balance of power from companies to consumers, and that the only way to succeed in this ever-changing landscape is to create superior products and attract a new breed of multifaceted employees whom Eric and Jonathan dub "smart creatives."

Covering topics including corporate culture, strategy, talent, decision-making, communication, innovation, and dealing with disruption, the authors illustrate management maxims ("Consensus requires dissension," "Exile knaves but fight for divas," "Think 10X, not 10%") with numerous insider anecdotes from Google's history, many of which are shared here for the first time.

In an era when everything is speeding up, the best way for businesses to succeed is to attract smart-creative people and give them an environment where they can thrive at scale. How Google Works explains how to do just that.

A revelatory exploration of the hottest trend in technology and the dramatic impact it will have on the economy, science, and society at large.

Which paint color is most likely to tell you that a used car is in good shape? How can officials identify the most dangerous New York City manholes before they explode? And how did Google searches predict the spread of the H1N1 flu outbreak?

The key to answering these questions, and many more, is big data. “Big data” refers to our burgeoning ability to crunch vast collections of information, analyze it instantly, and draw sometimes profoundly surprising conclusions from it. This emerging science can translate myriad phenomena—from the price of airline tickets to the text of millions of books—into searchable form, and uses our increasing computing power to unearth epiphanies that we never could have seen before. A revolution on par with the Internet or perhaps even the printing press, big data will change the way we think about business, health, politics, education, and innovation in the years to come. It also poses fresh threats, from the inevitable end of privacy as we know it to the prospect of being penalized for things we haven’t even done yet, based on big data’s ability to predict our future behavior.

In this brilliantly clear, often surprising work, two leading experts explain what big data is, how it will change our lives, and what we can do to protect ourselves from its hazards. Big Data is the first big book about the next big thing.

Design IT Organizations for Agility at Scale

Aspiring digital businesses need overall IT agility, not just development team agility. In Agile IT Organization Design , IT management consultant and ThoughtWorks veteran Sriram Narayan shows how to infuse agility throughout your organization. Drawing on more than fifteen years’ experience working with enterprise clients in IT-intensive industries, he introduces an agile approach to “Business–IT Effectiveness” that is as practical as it is valuable.

The author shows how structural, political, operational, and cultural facets of organization design influence overall IT agility—and how you can promote better collaboration across diverse functions, from sales and marketing to product development, and engineering to IT operations. Through real examples, he helps you evaluate and improve organization designs that enhance autonomy, mastery, and purpose: the key ingredients for a highly motivated workforce.

You’ll find “close range” coverage of team design, accountability, alignment, project finance, tooling, metrics, organizational norms, communication, and culture. For each, you’ll gain a deeper understanding of where your organization stands, and clear direction for making improvements. Ready to optimize the performance of your IT organization or digital business? Here are practical solutions for the long term, and for right now.

Govern for value over predictability Organize for responsiveness, not lowest cost Clarify accountability for outcomes and for decisions along the way Strengthen the alignment of autonomous teams Move beyond project teams to capability teams Break down tool-induced silos Choose financial practices that are free of harmful side effects Create and retain great teams despite today’s “talent crunch” Reform metrics to promote (not prevent) agility Evolve culture through improvements to structure, practices, and leadership—and careful, deliberate interventions
©2018 GoogleSite Terms of ServicePrivacyDevelopersArtistsAbout Google
By purchasing this item, you are transacting with Google Payments and agreeing to the Google Payments Terms of Service and Privacy Notice.