Effective strategies for managing risks online and defense against the internet's "dark side" * "Best practice" advice from leading advisers and case studies from successful firms The second edition of this invaluable book highlights the key issues and identifies best practice in online risk management, taking the premise that information security is no longer an issue confined to the IT department but is critical to all operational functions: finance, HR, marketing, production etc. Nor are its solutions purely technical. With two thirds of security breaches said to be caused by human error, management controls and processes are equally important. "The Secure Online Business Handbook" draws on the experience of leading firms and their advisers and uses up-to-date case studies to illustrate "best practice" in online risk management. New features include chapters on broadband and biometrics, and an in-depth look at online payments, including in particular the spate of attacks in 2003 using worms, viruses and phish. Contributions from Nokia, Computacenter, British Standards Institute, the Fraud Advisory Panel, ClearCommerce, Netscreen, Globalsign, Macrovision, Websense, Easynet, the Central Sponsor for Information Assurance, Royal Bank of Scotland, Simmons & Simmons and KrollOntrack, Contents include: Information at risk; Points of exposure; Software protection; Security policies; Organizational back-up; Contingency planning. Published in association with the Institute of Directors.

有效的在线风险管理策略和防范互联网的“阴暗面”*“最佳实践”来自领先顾问的建议和成功公司的案例研究这本价值不菲的书的第二版突出了关键问题，并确定了在线风险管理的最佳实践，以信息安全不再是仅限于IT部门的问题，而是对所有运营职能（财务、人力资源、营销、生产等）至关重要为前提，其解决方案也不是纯技术性的。据说三分之二的安全漏洞是由人为错误造成的，因此管理控制和流程同样重要。”安全在线业务手册“借鉴了领先公司及其顾问的经验，并使用最新的案例研究来说明在线风险管理的“最佳实践”。新功能包括关于宽带和生物特征的章节，以及对在线支付的深入研究，特别是2003年大量使用蠕虫、病毒和网络钓鱼的攻击。诺基亚、Computacenter、英国标准协会、欺诈咨询小组、ClearCommerce、Netscreen、Globalsign、Macrovision、Websense、Easynet、信息保障中心发起人、苏格兰皇家银行、Simmons&Simmons和KrollOntrack的贡献，内容包括：风险信息；暴露点；软件保护；安全政策；组织备份；应急计划。与董事学会联合出版。