In The Executive MBA in Information Security, author John Trinckes notes that according to Washington, D.C., think tank the Brookings Institution, an organization’s information and other intangible data assets account for more than 80 percent of its market value. Such a statistic unequivocally demonstrates the imperative of a strong enterprise information security program.
With that in mind, Trinckes first points out that data security is a management decision, and as such, requires executive leadership to create an effective foundation.
Leadership alone will not get the organization to a state of effective security, however, and that is where the book comes in. The reader will find within this work an overview of all of the core areas in information security. The format and content generally mirror the (ISC)2 Common Body of Knowledge, a basis for (ISC)2’s Certified Information Systems Security Professional (CISSP) certification.
While nothing in the book is ground-breaking, its value lies in the integration of this information into a single volume for the person who does not have a strong background in information security and risk management.
While not the definitive text on the subject, The Executive MBA in Information Security provides a good start for any executive or professional looking to get a thorough understanding of the fundamentals of information security.