Controlling Privacy and the Use of Data Assets - Volume 1: Who Owns the New Oil?
暫譯: 控制隱私與數據資產的使用 - 第1卷:誰擁有新石油?

Mattsson, Ulf

  • 出版商: CRC
  • 出版日期: 2022-06-27
  • 售價: $2,360
  • 貴賓價: 9.5$2,242
  • 語言: 英文
  • 頁數: 312
  • 裝訂: Quality Paper - also called trade paper
  • ISBN: 1032039132
  • ISBN-13: 9781032039138
  • 相關分類: Penetration-test
  • 海外代購書籍(需單獨結帳)

商品描述

Ulf Mattsson leverages his decades of experience as a CTO and security expert to show how companies can achieve data compliance without sacrificing operability.

  • Jim Ambrosini, CISSP, CRISC, Cybersecurity Consultant and Virtual CISO

Ulf Mattsson lays out not just the rationale for accountable data governance, he provides clear strategies and tactics that every business leader should know and put into practice. As individuals, citizens and employees, we should all take heart that following his sound thinking can provide us all with a better future.

  • Richard Purcell, CEO Corporate Privacy Group and former Microsoft Chief Privacy Officer

Many security experts excel at working with traditional technologies but fall apart in utilizing newer data privacy techniques to balance compliance requirements and the business utility of data. This book will help readers grow out of a siloed mentality and into an enterprise risk management approach to regulatory compliance and technical roles, including technical data privacy and security issues.

The book uses practical lessons learned in applying real-life concepts and tools to help security leaders and their teams craft and implement strategies. These projects deal with a variety of use cases and data types. A common goal is to find the right balance between compliance, privacy requirements, and the business utility of data.

This book reviews how new and old privacy-preserving techniques can provide practical protection for data in transit, use, and rest. It positions techniques like pseudonymization, anonymization, tokenization, homomorphic encryption, dynamic masking, and more. Topics include

  • Trends and Evolution
  • Best Practices, Roadmap, and Vision
  • Zero Trust Architecture
  • Applications, Privacy by Design, and APIs
  • Machine Learning and Analytics
  • Secure Multiparty Computing
  • Blockchain and Data Lineage
  • Hybrid Cloud, CASB, and SASE
  • HSM, TPM, and Trusted Execution Environments
  • Internet of Things
  • Quantum Computing
  • And much more!

商品描述(中文翻譯)

- Jim Ambrosini, CISSP, CRISC, 網絡安全顧問及虛擬首席信息安全官

- Richard Purcell, CEO Corporate Privacy Group 及前微軟首席隱私官

許多安全專家擅長使用傳統技術,但在利用較新的數據隱私技術以平衡合規要求和數據的商業效用方面卻表現不佳。本書將幫助讀者擺脫孤立的心態,轉向企業風險管理的方法,以應對合規和技術角色,包括技術數據隱私和安全問題。

本書使用實際經驗教訓,應用現實生活中的概念和工具,幫助安全領導者及其團隊制定和實施策略。這些項目涉及各種用例和數據類型。共同的目標是找到合規、隱私要求和數據商業效用之間的正確平衡。

本書回顧了新舊隱私保護技術如何為數據在傳輸、使用和靜止狀態下提供實際保護。它介紹了像是假名化、匿名化、標記化、同態加密、動態遮罩等技術。主題包括:

- 趨勢與演變
- 最佳實踐、路線圖與願景
- 零信任架構
- 應用、設計隱私及 API
- 機器學習與分析
- 安全多方計算
- 區塊鏈與數據血統
- 混合雲、CASB 與 SASE
- HSM、TPM 與可信執行環境
- 物聯網
- 量子計算
- 以及更多!

作者簡介

Ulf Mattsson is a recognized information security and data privacy expert with a strong track record of more than two decades implementing cost-effective data security and privacy controls for global Fortune 500 institutions, including Citigroup, Goldman Sachs, GE Capital, BNY Mellon, AIG, Visa USA, Mastercard Worldwide, American Express, The Coca Cola Company, Wal-Mart, BestBuy, KOHL's, Microsoft, IBM, Informix, Sybase, Teradata, and RSA Security. He is currently the Chief Security Strategist and earlier the Chief Technology Officer at Protegrity, a data security company he co-founded after working 20 years at IBM in software development. Ulf is an inventor of more than 70 issued US patents in data privacy and security. Ulf is active in the information security industry as a contributor to the development of data privacy and security standards in the Payment Card Industry Data Security Standard (PCI DSS) and American National Standards Institute (ANSI) X9 for financial industry. He is on the advisory board of directors at PACE University, NY, in the area of cloud security and a frequent speaker at various international events and conferences, including the RSA Conference, and the author of more than 100 in-depth professional articles and papers on data privacy and security, including IBM Journals, IEEE Xplore, ISSA Journal and ISACA Journal. Ulf also holds a master's in physics in Engineering from Chalmers University of Technology in Sweden and is Co-Author of Defending the database (Elsevier Ltd, 2007) and Real security for virtual machines (Elsevier Ltd, 2009)

作者簡介(中文翻譯)

烏爾夫·馬特森(Ulf Mattsson)是一位公認的信息安全和數據隱私專家,擁有超過二十年的成功經驗,為全球《財富》500強機構實施具成本效益的數據安全和隱私控制,包括花旗集團(Citigroup)、高盛(Goldman Sachs)、通用電氣金融(GE Capital)、BNY Mellon、AIG、美國運通(American Express)、美國維薩(Visa USA)、萬事達卡(Mastercard Worldwide)、可口可樂公司(The Coca Cola Company)、沃爾瑪(Wal-Mart)、百思買(BestBuy)、科爾斯(KOHL's)、微軟(Microsoft)、IBM、Informix、Sybase、Teradata 和 RSA Security。他目前是 Protegrity 的首席安全策略師,之前擔任首席技術官,該公司是一家他在 IBM 從事軟件開發工作 20 年後共同創立的數據安全公司。烏爾夫擁有超過 70 項已授權的美國專利,專注於數據隱私和安全。他在信息安全行業中活躍,為支付卡行業數據安全標準(PCI DSS)和美國國家標準協會(ANSI)X9 的金融行業數據隱私和安全標準的發展做出貢獻。他是紐約 PACE 大學雲安全領域的顧問董事會成員,並且經常在各種國際活動和會議上發表演講,包括 RSA 會議,並且是超過 100 篇有關數據隱私和安全的深入專業文章和論文的作者,這些文章發表在 IBM Journals、IEEE Xplore、ISSA Journal 和 ISACA Journal 等期刊上。烏爾夫還擁有瑞典查爾默斯科技大學的工程物理碩士學位,並且是《捍衛數據庫》(Defending the database,Elsevier Ltd,2007)和《虛擬機的真正安全性》(Real security for virtual machines,Elsevier Ltd,2009)的共同作者。