As hacker organizations surpass drug cartels in terms of revenue generation, it is clear that the good guys are doing something wrong in information security. Providing a simple foundational remedy for our security ills, Security De-Engineering: Solving the Problems in Information Risk Management is a definitive guide to the current problems impacting corporate information risk management. It explains what the problems are, how and why they have manifested, and outlines powerful solutions. Ian Tibble delves into more than a decade of experience working with close to 100 different Fortune 500s.
Section 1. People and blame -- section 2. The de-engineering of security -- section 3. Security products -- section 4. The re-engineering of security.