This book provides a guide
for managers dealing with the economic and
financial aspects of information security.
It is intended to be a valuable resource
for information security managers and
other IT personnel seeking to attain
additional organizational recourses for
information security. Topics covered
include a general economic cost-benefit
framework for managing cybersecurity
resources and risk, assessing the actual
costs of cybersecurity breaches, preparing
a business case for securing information
security funding, the uses of security
audits, and the role of cybersecurity in
national security. In addition to its use
to information security managers, this
book should also prove valuable to
instructors and students in university
courses covering financial and economic
aspects of information security.
the following link to coauthor Dr.
Lawrence A. Gordon's Web: