Internal Control for Information Security: Annotated Bibliography

¶ … Internal Control for Information Security: Annotated Bibliography

Making the case for Network Security. (2012, Apr 19). Retrieved from Wikibon Blog:

http://wikibon.org/blog/making-the-case-for-network-security/

This author addresses the central concerns regarding information security in the modern business world using broad strokes to make the importance of network security as a key business operation readily apparent to the reader. As the article is addressed primarily on business managers and other practically interested personnel, the language is a bit too full of professional jargon and other needless complications, however the basic facts that the author lays out and the conclusions drawn from these facts and their relationship are quite straightforward and clear. Though not providing any truly in-depth and concrete data or profound insights, this presents overview information that is directly related to the investigation of network and information security.

Information: Complying with the Safeguards Rule. (n.d.). Retrieved from Bureau of Consumer Protection: http://www.business.ftc.gov/documents/bus54-

customer-information-complying-safeguards-rule

This government-produced document outlined what constitutes a financial institution as far as the rules for safeguarding consumers' financial information is concerned. After providing this overview definition of different types of institutions that must comply with the safeguard rules, a broad description of the rules themselves and the areas of concern for information security and the protection financial information in networks is also provided, and recommendations and guidelines to help companies ensure compliance (and to inform consumers of their rights in regards to the protection of their financial information) are also supplied. Though not exactly related to the technical how-tos of providing information and network security, this source does provide an understanding of the practical ends and the legislative imperatives applicable to the area of investigation.

Schneider, G.P. (2009). Electronic Commerce Security. In G.P. Schneider,

Electronic Commerce (p. 459). Boston, MA: Cengage Learning.

A chapter in a larger book dealing with all manner of issues that are related to electronic and especially online commerce, the focus here is particularly on the security needs of online and electronic commerce components and provides an overview of how to fulfill these security needs. The author moves from a very broad overview of certain topics to more specific and concrete examples and explanations, and in this provides a comprehensive understanding of the most commonly relevant areas of security in consumer and commercial transactions. Highly academic in tone, the information remains very accessible and provides a solid foundation on which to build the current investigation. As far as more in-depth and ground-breaking research or conclusions are concerned, however, this source is not especially helpful (nor is it designed to be).

Pervaiz, M., Cardei, M. & Wu, J. (2010). Routing Security in Ad Hoc Wireless Networks. Network Security 117-42.