ABOUT THE AUTHOR
Shon Harris, CISSP, is the founder and CEO of Logical Security, a computer security consultant, a former engineer in the Air Force’s Information Warfare unit, an instructor, and an author. She has authored three best-selling CISSP books and was a contributing author to Hacker’s Challenge (McGraw-Hill/Professional, 2001), Gray Hat Hacking, 1st and 2nd editions (McGraw-Hill/Professional, 2004 and 2007), and Security Information and Event Management (SIEM) Implementation (McGraw-Hill/Professional, forthcoming). She is currently working on a Certified Ethical Hacker (CEH) book. Ms. Harris has developed a full digital information security product series for Pearson Education. Ms. Harris also works with various law firms as an information security expert witness.
Ms. Harris has consulted for several Fortune 500 companies in the U.S., including American Express, Warner Brothers, Bridgestone/Firestone, CitiBank, CitiFinancial, AOL, Cisco, and many more. Her competencies range from setting up risk management programs and developing enterprise network security architectures to constructing enterprise-wide security programs that connect computer security and business needs in a synergistic manner.
Ms. Harris has extensive knowledge and practical experience pertaining to legal and regulatory compliance. She has worked with the largest corporations within the U.S. to become compliant with OCC regulations, SOX, GLBA, HIPAA, PCI, and SAS70. Ms. Harris specializes in risk management, governance, and the development of and implementation of security metrics.
Ms. Harris has taught information security to a wide range of clients, including Microsoft, the Department of Defense, the Department of Energy, the National Security Agency, the Defense Information Systems Agency, RSA, the U.S. Military Academy at West Point, Bank of America, and many other financial institutions.
Ms. Harris was recognized as one of the top 25 women in the information security field by Information Security magazine.
About the Developmental Editor
Crystal Bedell is the Principal of Bedell Communications, a full-service copywriting and editing firm specializing in technology and B2B communications. She has more than 15 years of combined editing, writing, and marketing experience, including eight years at TechTarget, where she developed Web content for IT professionals. Having worked as both a member of the press and in marketing, Crystal has unique insights into the information needs of IT professionals as well as an understanding of their work environment and the constraints of the typical IT decision maker. She knows how to speak their language and distill marketing language into plain English.
As a professional copywriter, Crystal writes case studies, white papers, Web copy, and more for technology companies. She is also the author of the Tech Marcom Blog, which can be found at http://bedellcommunications.com/.
About the Technical Editor
Polisetty Veera Subrahmanya Kumar, CISSP, CISA, PMP, PMI-RMP, MCPM, ITIL, has more than 20 years’ experience in the field of information technology. His areas of specialization include information security, business continuity, project management, and risk management. Currently he is serving his term as Chairperson for the Project Management Institute’s PMI-RMP (PMI–Risk Management Professional) Credentialing Committee. In the past he has worked as content development team leader on a variety of PMI standards development projects. He was a lead instructor for the PMI PMBOK review seminars. He is also serving his term as a member of ISACA’s India Growth Task Force team.
ACKNOWLEDGMENTS
I would like to thank my husband, David Harris. Without his steadfast confidence in me, I would not have been able to accomplish half the things I have taken on in my life.