TY - BOOK AU - Edwards,Jason AU - Weaver,Griffin TI - The cybersecurity guide to governance, risk, and compliance SN - 9781394250202 AV - HD30.38 .E34 2024 U1 - 005.8 23/eng/20240223 PY - 2024/// CY - Hoboken, NJ PB - John Wiley & Sons, Inc. KW - Business enterprises KW - Computer networks KW - Security measures KW - Computer security KW - Computer crimes KW - Prevention KW - Electronic books N1 - Includes index; Table of Contents Purpose of the Book xvii Target Audience xix Structure of the Book xxi Foreword by Wil Bennett xxiii Foreword by Gary McAlum xxv Chapter 1 Governance, Risk Management, and Compliance 1 Chapter 2 The Landscape of Cybersecurity 19 Chapter 3 Cybersecurity Leadership: Insights and Best Practices 33 Chapter 4 Cybersecurity Program and Project Management 53 Chapter 5 Cybersecurity for Business Executives 69 Chapter 6 Cybersecurity and the Board of Directors 87 Chapter 7 Risk Management 109 Chapter 8 The NIST Risk Management Framework 131 Chapter 9 Cybersecurity Metrics 151 Chapter 10 Risk Assessments 171 Chapter 11 NIST Cybersecurity Framework 191 Chapter 12 Cybersecurity Frameworks 209 Chapter 13 NIST SP 800-53: Security and Privacy Controls Framework 231 Chapter 14 The FFIEC: An Introduction 245 Chapter 15 U.S. Federal Cybersecurity Regulations 267 Chapter 16 State-level Cybersecurity Regulations 287 Chapter 17 International Cybersecurity Laws and Regulations 299 Chapter 18 Privacy Laws and Their Intersection with Cybersecurity 315 Chapter 19 Auditing Cybersecurity: Guides for Auditors and the Audited 333 Chapter 20 The Challenging Role of the Regulator 355 Chapter 21 Understanding US Regulatory Bodies 377 Chapter 22 Managing Regulatory Visits and Requests for Information 395 Chapter 23 Understanding Regulatory Penalties 409 Chapter 24 Addressing and Remediating Regulatory Findings 429 Chapter 25 Cybersecurity Architecture 445 Chapter 26 Risk Mitigation 463 Chapter 27 Cloud Security 481 Chapter 28 Artificial Intelligence in Cybersecurity 497 Chapter 29 Quantum Computing: A New Frontier 511 Chapter 30 Incident Response and Recovery 521 Chapter 31 Navigating the Cyber Insurance Maze 541 Glossary 549 Cybersecurity Resources 555 Ready to Use KPI Examples 567 Ready to Use KRI Examples 599 The End 631 Index 633 N2 - "Cyber Security Governance & Risk Management is the monitoring of compliance with agreed cyber security policies and the assessment and management of relevant risks. Cybersecurity is a critical concern for modern businesses, and understanding how to navigate it is vital"-- UR - https://onlinelibrary.wiley.com/doi/book/10.1002/9781394250226 ER -