Books by Patrick D. Howard

Demonstrates the effectiveness of certification and accreditation as a risk management methodology for IT systems in public and private organizations. This work provides security professionals with an overview of C&A components, showing them how to document the status of IT security controls and secure systems via standard, repeatable processes.

In light of the legislation such as the Federal Information Security Management Act (FISMA), there is an increased need to measure the ability of government organizations and companies subject to these standards to protect information. This book provides guidelines for addressing FISMA compliance.