cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted
Community Champion

Security policy course development

 

I am revamping a senior/graduate level information security policy and governance course, and am looking for possible textbook candidates. I am using one such book, but would like to investigate to see if I can augment/replace with something different..

 

I am looking for more broad based, not too in-depth type.

 

Any one has recommendations? 

 

Thanks,


____________________________________
Chuxing Chen, Ph.D., CISSP, PMP
3 Replies
Community Champion

Re: Security policy course development

Not sure the book you are using but for the longest time, I used a book created by Charles Creeson Wood.  As a newbie to Security and charged with writing policy, I found it useful as he detailed rationale for each of the sections.

 

Regards

 

Community Champion

Re: Security policy course development

@dcontesti 

 

His book is more for practitioners, and the availability as a textbook is somewhat questionable, and too expensive.

 

Thanks for the info though,

 


____________________________________
Chuxing Chen, Ph.D., CISSP, PMP
Community Champion

Re: Security policy course development

> dcontesti (Contributor I) posted a new reply in Career on 03-01-2019 11:33 AM in

> Not sure the book you are using but for the longest time, I used a book created
> by Charles Creeson Wood.

Oi vey.

I would definitely *not* recommend "Security Policies Made Easy" as a text in
the policy area. It's a helpful resource for *creating* policies, but only if you
remember that it's sample text, and you need to craft it for your particular
enterprise and needs. Your students will also die from lugging it back and forth to
class. (Although the CD would make that easier.)

For a course I'd much rather go with "Writing Information Security Policies" by
Scott Barman.
http://victoria.tc.ca/int-grps/books/techrev/bkwrinsp.rvw

Heck, over Cresson-Wood I'd even go with "Effective Security Management" by
Charles A. Sennewald, even though he's strictly a physical security guy. Most
(85%?) of the material is still relevant to us.
http://victoria.tc.ca/int-grps/books/techrev/bkefscmn.rvw

====================== (quote inserted randomly by Pegasus Mailer)
rslade@vcn.bc.ca slade@victoria.tc.ca rslade@computercrime.org
Thus the metric system did not really catch on in the United
States, unless you count the increasing popularity of the nine
millimeter bullet. - Dave Barry
victoria.tc.ca/techrev/rms.htm http://twitter.com/rslade
http://blogs.securiteam.com/index.php/archives/author/p1/
https://is.gd/RotlWB

............
This message may or may not be governed by the terms of
http://www.noticebored.com/html/cisspforumfaq.html#Friday or
https://blogs.securiteam.com/index.php/archives/1468