About the Book
As the countless breaches in the news illustrate, something is seriously wrong with how security and privacy programs are being managed in governments and businesses around the world. My theory is that this can be traced back to how we think about information security (cyber) risk, and how this thinking affects the information security programs that result.
In my view, we are in a war, a cyberwar, and if you come away with anything from reading this book, I hope it will be the realization that every man, woman, business, and government agency is under attack. Determining your most likely adversaries, preparing defenses against their attacks, and then effectively managing the day-to-day work of reacting to events is what I hope you will learn from this book.
About the Author
Michael is an information security/risk executive and consultant, with a 20-year track record as a Chief Information Security Officer (CISO), advisory Information Security practice leader, and information security/risk consultant. He writes, blogs, presents, speaks, and provides interviews on a wide variety of information security topics, primarily concerning what it takes to develop and run effective information security programs, and why so many companies continue to suffer security breaches due to ineffective programs.