The Basics of Information Security
I recommend this book, especially to those managers who don’t consider themselves ‘geeks’ or ‘techies’. It has a good style that will be comfortable to professional managers, and the language treads the fine line between required technical explanation and not sounding like an engineering book. I suspect that the author, and his editor, put in a great deal of effort in making this a well crafted book.
Ghost in the Wires
This is a great book. It’s as great for computer geeks as it is for non-technical people, yet I think anyone in the security business will certainly get a little extra kick out of it as it’s a real eye opener into the mind of the most experienced deception expert of all time. Worth every penny!
Analyzing Computer Security
This is must read book for any budding Security Architect and also makes a great professional reference. I’d recommend this book to any IT architect or specialist wishing to enter the field of security architectures, as well as to anyone who already has that title and wants a good quality reference book.
Thor’s Microsoft Security Bible
The book offers detailed descriptions on how to provide secure infrastructure services, such as SQL, as a least privileged account, and therefore offers system engineers a guide to bolstering their system’s security posture as much as is possible.
Virtual Shadows
Öqvist's "Virtual Shadows" is an ambitious, and consequently slightly flawed, treatment of issues of personal privacy and national security in the context of online communication in the Information Age. Everyone 'online' should read this book to understand the risks they are taking and to appreciate how the future may unfold.Welcome to InfoSec Reviews
InfoSec Awards 2011 - Awards Magazine Now Published
We have now published our InfoSec Review Book Awards magazine for 2011 in preparation for its launch in print at Infosecurity Europe in Earls Court, London (24 - 26 April). The magazine covers all the best books of 2011, as voted by our readers, as well as loads of articles from authors and publishers about writing in our field. This magazine is available in digital form here:
We hope the winners of this years awards are happy with their selection and they have all of you, the information security book buying public, to thank for this.
Mich Kabay’s InfoSec Perception Blog
It is with much excitement that we welcome Mich Kabay’s blog to InfoSec Reviews; from now on to be known as ‘Perception’.
Mich has been the author of the Security Strategies newsletter at Network World for the last 11 years, posting in excess of 1200 articles, so we are honoured to offer him his new home here on our website. Mich’s first blog post for us, Credo, is already published for you to read, being a simple introduction to what’s to come over the following months. Just click the Perception link on top menu or on the main menu on the right side of this page.
Perception will provide us with Mich’s unique viewpoint and commentary on the world of Information Security. As he says, the blog is aimed at everyone in the security industry; from CIOs, to programmers, from consultants to students – all are welcome to drink down his vast experience.
InfoSec Reviews is delighted to welcome Mich to our site and we encourage you to comment as much as you can on Mich’s work, as this is what will make the column its most valuable. And all that remains to be said is… over to you Mich.....
M. E. Kabay, PhD, CISSP-ISSMP
Professor of Information Assurance & Statistics,
School of Business and Management, Norwich University
Mich Kabay began programming computers in assembly language in 1965. In 1976, he received his PhD from Dartmouth College in applied statistics and invertebrate zoology and taught biology, statistics, and programming as a university professor in Canada and overseas. In 1979, he joined a compiler team for a new 4GL and RDBMS in the US, then joined Hewlett-Packard Canada in 1980 as an operating systems and database performance specialist, winning the Systems Engineer of the Year Award in 1982. He ran his own consulting firm from 1986 to 1998, specializing in operations management, facilities security, and corporate security policy development and implementation. He served as Director of Education for the National Computer Security Association from 1990 to 1999, and then worked with AtomicTangerine where he supported the International Institute for Information Integrity (I-4). He has been a speaker at the United States War College, the Pentagon, NATO HQ, and at NATO Counterintelligence training in Germany. He earned his CISSP designation in 1997.
He was inducted into the ISSA Hall of Fame in December 2004 and earned his ISSMP designation from (ISC)2 in November 2005. He joined Norwich University in 2001, served as Program Director of the Master's Program in Information Assurance from 2002 to 2009, and was the CTO of the School of Graduate Studies in from 2005 to 2009.
Since 1986, he has published over 1300 articles in operations management and security, written a college textbook on enterprise security (McGraw-Hill, 1996), and served as Technical Editor of the 4th (2002) 5th (2009) and 6th (due 2013) editions of the Computer Security Handbook (Wiley).
His Web site is http://www.mekabay.com
Announcing Our New Blog Feature
We're really pleased that our blog is starting to take off and your feedback on this and our Perception resources are fantastic. Please keep reading and commenting and if you are interested in writing for us on any subject close to your heart, we'd love to hear from you.
Tony
InfoSec Reviews on the Amazon Kindle
You can now get hold of the RSS feed on Amazon for your Kindle. InfoSec Reviews
Getting Around
It's easy to get around our site.
Use the Main Menu on the right to browse through our reviews. The reviews are laid out in a list format within each category. You can also get an RSS feed of all reviews, clicking here.
Check out the Latest book reviews listed in the sidebar beneath the Login Form.
You can also search on keywords using the search box in the top right hand corner of every page.
YOU HAVE TO BE LOGGED IN IF YOU WANT TO LEAVE A COMMENT ON ANY OF OUR REVIEWS.
Contribute
If you'd like to join our community of professional reviewers then first you'll need to sign up for an account. Take a good look around our site, read some reviews and get a feel for what we are after. If you are still interested then drop us a note with your CV to This e-mail address is being protected from spambots. You need JavaScript enabled to view it. .
RSS
Want to read the latest book reviews as they are published? Click on the following link and add to your favourite RSS reader.
Why Sign Up?
The best way to get the most out of InfoSecReviews.Com is to sign up as a Registered User.
Registration is simple and the benefits are plentiful: you'll be notified of new products and book reviews as soon as the are published, and you'll also get notified right away of all our special offers or giveaways.
We'll also be launching some additional 'value add' content for our Registered Users later in 2011, so stay tuned for that.
To join, click Create an account on the right and follow the simple process ---------->>>>>>>>>>
