LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Weekly Edition

Return to the Announcements page

Recent Features

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

New security book published

[Posted February 11, 2004 by cook]

From:  "Kathryn Barrett" <syngresspr-AT-oreilly.com>
To:  lwn-AT-lwn.net
Subject:  Syngress Publishing Releases "Security Assessment: Case Studies for Implementing the NSA IAM"
Date:  Mon, 09 Feb 2004 12:30:33 -0800

Contact: Amy Pedersen
781-681-5151 x12
amy@syngress.com

Syngress Publishing Announces the Release of "Security Assessment: Case
Studies for Implementing the NSA IAM"

The first book that presents the National Security Agency's (NSA)
guidelines for Information Assurance Methodology (IAM)

Rockland, MA - Syngress Publishing, Inc., today announced the publication
of Security Assessment: Case Studies for Implementing the NSA IAM, a book
written by Security Horizons, Inc., a Colorado-based professional security
and training provider. This is the first new publication from Syngress to
be distributed in the United States by O'Reilly & Associates.

In 1998, the National Security Agency (NSA) Information Assurance
Methodology (IAM) was developed to meet the demand for information
security (INFOSEC) assessments--a demand that was increasing due to
Presidential Decision Directive 63 (PDD-63) while at the same time NSA was
downsizing. NSA sought a way to maximize its resources to assist as many
customers as possible and so they created a list of organizations that
could perform the same service as the NSA. NSA quickly realized that this
system would not only provide valuable information to consumers--it would
also provide a vehicle for standardization of INFOSEC assessments.

Amorette Pedersen, Vice President of Rights and Marketing, Syngress
Publishing, said, "The NSA IAM has gained enormous momentum within the
INFOSEC community, particularly in a business environment that must
seriously consider the possibility of coordinated cyber-attacks. This book
is the perfect guide for security practitioners, customers purchasing
security services, and certification candidates."

Chapter topics include: Laying the Foundation for Your Assessment, The
Pre-Assessment Visit, Determining the Organization's Information
Criticality, System Information Criticality, The System Security
Environment, Understanding the Technical Assessment Plan, Customer
Activities, Managing the Findings, Leaving No Surprises, Final Reporting,
and Tying Up Loose Ends.

"This publication is the first of its kind and the culmination of years of
experience in performing these assessments. I'm excited to see a reference
of this type finally released and believe it will provide tremendous value
to the security industry at large," said Russ Rogers, Co-Founder and CEO
of Security Horizons, Inc. and one of the book's authors.


About the Authors
Russ Rogers (CISSP, CISM, IAM) is a Co-Founder, Chief Executive Officer,
Chief Technology Officer, and Principle Security Consultant for Security
Horizon, Inc, a Colorado-based professional security services and training
provider. Russ is a United States Air Force veteran and has served in
military and contract support for the National Security Agency and the
Defense Information Systems Agency. Russ is also the editor-in-chief of
"The Security Journal" and a staff member for the Black Hat Briefings
series of security conferences.

Greg Miles (CISSP, CISM, IAM) is a Co-Founder, President, and Principle
Security Consultant for Security Horizon, Inc. Greg is a United States Air
Force veteran and has served in military and contract support for the
National Security Agency, Defense Information Systems Agency, Air Force
Space Command, and NASA supporting worldwide security efforts. Greg has
been a featured speaker at the Black Hat Briefings series of security
conferences and APCO conferences and is a frequent contributor to "The
Security Journal."


Background Information
Syngress Publishing (www.syngress.com), headquartered in Rockland,
Massachusetts, is an independent publisher of print and electronic
reference materials for Information Technology professionals seeking skill
enhancement and career advancement. Distributed throughout Europe, Asia,
and the U.S. and Canada, Syngress titles have been translated into twenty
languages. The company's pioneering customer support program,
solutions@syngress.com, extends the value of every Syngress title with
regular information updates and customer-driven author forums. For more
information on Syngress products, contact Amy Pedersen at 781-681-5151 or
email amy@syngress.com. Syngress books are distributed in the United
States by O'Reilly & Associates.
(Log in to post comments)

Copyright © 2004, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds