cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Chuxing
Community Champion

Security policy course development

 

I am revamping a senior/graduate level information security policy and governance course, and am looking for possible textbook candidates. I am using one such book, but would like to investigate to see if I can augment/replace with something different..

 

I am looking for more broad based, not too in-depth type.

 

Any one has recommendations? 

 

Thanks,


____________________________________
Chuxing Chen, Ph.D., CISSP, PMP
3 Replies
dcontesti
Community Champion

Not sure the book you are using but for the longest time, I used a book created by Charles Creeson Wood.  As a newbie to Security and charged with writing policy, I found it useful as he detailed rationale for each of the sections.

 

Regards

 

Chuxing
Community Champion

@dcontesti 

 

His book is more for practitioners, and the availability as a textbook is somewhat questionable, and too expensive.

 

Thanks for the info though,

 


____________________________________
Chuxing Chen, Ph.D., CISSP, PMP
rslade
Influencer II

> dcontesti (Contributor I) posted a new reply in Career on 03-01-2019 11:33 AM in

> Not sure the book you are using but for the longest time, I used a book created
> by Charles Creeson Wood.

Oi vey.

I would definitely *not* recommend "Security Policies Made Easy" as a text in
the policy area. It's a helpful resource for *creating* policies, but only if you
remember that it's sample text, and you need to craft it for your particular
enterprise and needs. Your students will also die from lugging it back and forth to
class. (Although the CD would make that easier.)

For a course I'd much rather go with "Writing Information Security Policies" by
Scott Barman.
http://victoria.tc.ca/int-grps/books/techrev/bkwrinsp.rvw

Heck, over Cresson-Wood I'd even go with "Effective Security Management" by
Charles A. Sennewald, even though he's strictly a physical security guy. Most
(85%?) of the material is still relevant to us.
http://victoria.tc.ca/int-grps/books/techrev/bkefscmn.rvw

====================== (quote inserted randomly by Pegasus Mailer)
rslade@vcn.bc.ca slade@victoria.tc.ca rslade@computercrime.org
Thus the metric system did not really catch on in the United
States, unless you count the increasing popularity of the nine
millimeter bullet. - Dave Barry
victoria.tc.ca/techrev/rms.htm http://twitter.com/rslade
http://blogs.securiteam.com/index.php/archives/author/p1/
https://is.gd/RotlWB

............

Other posts: https://community.isc2.org/t5/forums/recentpostspage/user-id/1324864413

This message may or may not be governed by the terms of
http://www.noticebored.com/html/cisspforumfaq.html#Friday or
https://blogs.securiteam.com/index.php/archives/1468