Significant developments since the publication of its bestselling predecessor, Building and Implementing a Security Certification and Accreditation Program, warrant an updated text as well as an updated title. Reflecting recent updates to the Certified Authorization Professional (CAP-) Common Body of Knowledge (CBK-) and NIST SP 800-37, the Official (ISC)2- Guide to the CAP- CBK-, Second Edition provides readers with the tools to effectively secure their IT systems via standard, repeatable processes.
Derived from the author-sdecades of experience, including time as the CISO for the Nuclear Regulatory Commission, the Department of Housing and Urban Development, and the National Science Foundation-s Antarctic Support Contract, the book describes what it takes to build a system security authorization program at the organizational level in both public and private organizations. It analyzes the full range
