FINALIST: International Book Awards 2023 - Business: General
FINALIST: American Book Fest Best Book Award 2023 - Business: General

Balance the benefits of digital transformation with the associated risks with this guide to effectively managing cybersecurity as a strategic business issue.

Important and cost-effective innovations can substantially increase cyber risk and the loss of intellectual property, corporate reputation and consumer confidence. Over the past several years, organizations around the world have increasingly come to appreciate the need to address cybersecurity issues from a business perspective, not just from a technical or risk angle. Cybersecurity for Business builds on a set of principles developed with international leaders from technology, government and the boardroom to lay out a clear roadmap of how to meet goals without creating undue cyber risk.

This essential guide outlines the true nature of modern cyber risk, and how it can be assessed and managed using modern analytical tools to put cybersecurity in business terms. It then describes the roles and responsibilities each part of the organization has in implementing an effective enterprise-wide cyber risk management program, covering critical issues such as incident response, supply chain management and creating a culture of security. Bringing together a range of experts and senior leaders, this edited collection enables leaders and students to understand how to manage digital transformation and cybersecurity from a business perspective.

Effective risk management allows opportunities to be maximized and uncertainty to be minimized. This guide for emerging professionals provides a comprehensive understanding of risk management with tools, tips and tactics on how to offer expert insights and drive success.

Fundamentals of Risk Management is a detailed and comprehensive introduction to commercial and business risk for students and risk professionals. Completely aligned with ISO 31000 and the COSO ERM Framework, this book covers the key principles of risk management and how to deal with the different types of risk organizations face. The frameworks of business continuity planning, enterprise risk management, and project risk management are covered alongside an overview of international risk management standards and frameworks, strategy and policy.

The revised sixth edition includes updates throughout as well as providing new content on trends such as cyber risk, black swan events and climate risk. Supported by relevant international case examples including BP, Singapore Airlines and Darktrace, this book provides a full analysis of changes in contemporary risk areas including digital risk management, risk culture and appetite, supply chain and statutory risk reporting. Supporting online resources include lecture slides with figures, tables and key points from the book.

The Risk Management Handbook offers readers knowledge of current best practice and cutting-edge insights into new developments within risk management.

Risk management is dynamic, with new risks continually being identified and risk techniques being adapted to new challenges. Drawing together leading voices from the major risk management application areas, such as political, supply chain, cybersecurity, ESG and climate change risk, this edited collection showcases best practice in each discipline and provides a comprehensive survey of the field as a whole.

This second edition has been updated throughout to reflect the latest developments in the industry. It incorporates content on updated and new standards such as ISO 31000, MOR and ISO 14000. It also offers brand new chapters on ESG risk management, legal risk management, cyber risk management, climate change risk management and financial risk management. Whether you are a risk professional wanting to stay abreast of your field, a student seeking a broad and up-to-date introduction to risk, or a business leader wanting to get to grips with the risks that face your business, this book will provide expert guidance.

A Practical Introduction to Security and Risk Management is the first textbook to combine both security management and risk management. Its concepts and skills can be applied in all domains: business, public administration, public safety, criminology, computing, sports, tourism, agriculture, healthcare, education, intelligence, policing, and international relations.

This second edition adds the latest issues from pandemics, lockdowns, wars, crimes, and cyber risks, NEW Expert Perspectives, NEW Think about it boxes, UPDATED Official Standards, NEW End-of-Chapter debates, NEW chapter summaries, questions, and exercises, and a glossary of definitions and abbreviations.

Consultant and professor Bruce Oliver Newsome Ph.D. helps readers to understand, analyze, assess, and manage security and risks.

Organized into 12 brief, accessible chapters, this book shows readers why security and risk management is becoming more important (Chapter 1), how to conceptualize, analyze, and assess security (Chapter 2), capacity (Chapter 3), risk (Chapter 4), hazards, threats, and contributors (Chapter 5), target exposure and vulnerability (Chapter 6), uncertainty and probability (Chapter 7), and events and returns (Chapter 8), how to develop more secure cultures, structures, and processes (Chapter 9), how to establish risk tolerability and sensitivity (Chapter 10), how to strategize and control intolerable risks (Chapter 11), and how to record, communicate, monitor, and audit security and risk management (Chapter 12).

Let author, Kevin L. Glaser, CPCU, CIC, SCLA, ARM, AAI, AIC, ARM-P, AIS, share with you his wealth of first-hand experiences gained in his roles as insurance company adjuster, underwriter, marketing representative, risk manager, and expert witness over a period of thirty years.

This revised third edition contains expanded content in most chapters, including factors affecting the price of insurance, litigation related information, comparisons of the insurance industry to the automobile industry, as well as the addition of an index and new easier-to-read book formatting.

Who should read Inside the Insurance Industry - Third Edition? This book contains useful information for attorneys, new insurance company hires, risk managers, financial planners, business owners, college students taking insurance courses and individuals who purchase insurance to protect their financial well-being.

Sample areas of interest to readers include: -Mechanisms and processes by which insurance is sold-Identification of various distribution methods-Definitions of common industry terminology-Internal workings of insurance companies-Discussion of responsibilities of departments such as marketing, claims, underwriting, policy services, audit, loss control, legal, actuary, subrogation, internal audit, product development, information technology and management-Little known factors that impact insurance companies and policyholders-Factors affecting the price of insurance-How to get the best insurance deal-When (and how) to make an insurance claim-External resources available to assist purchasers of insurance-Consultants-Public adjusters-Risk management-Risk manager essential responsibilities-Sample case study-Litigation-related information-What the future holds for the insurance industryThis book is written in an easy-to-understand format which allows people with limited experience working with insurance to better understand many areas of insurance which were previously unknown to them. It contains just the right mix of broad and specific information.

All of the above are valuable reasons to purchase Inside the Insurance Industry - Third Edition. But the #1 reason for you to buy this book is that it will save you money!

2) Flexible, modular design that allows you to customize your own self-study plan: Ten chapters cover fundamental principles and practices; three chapters give greater detail on Information Technology and Emergency Management if your work focuses in these areas; and four chapters explain Risk Modeling if you want a foundation in the statistical underpinnings of risk management.

3) Comprehensive training package for professional development classes, including instructor materials: test bank, syllabi, PowerPoint slides, and sample solutions to case studies, discussions, and end-of-chapter questions. Two of the case studies are integrated throughout the text to give managers experience in applying chapter principles to a service company and a manufacturer.

4) Holistic coverage of two interfacing fields: Business Continuity, which tends to deal with consequences, and Risk Management, which tends to be preventative. Both The Business Continuity Institute (BCI) and The Institute of Risk Management (IRM) have endorsed the book.

5) Quick desk reference for your BCM team offering a readable blend of academic principles and practical applications-an effective tool for grounding interdepartmental teams learning to develop and maintain BC plans.
Kurt J. Engemann, PhD, CBCP, is the Director of the Center for Business Continuity and Risk Management and Professor of Information Systems in the Hagan School of Business at Iona College. Dr. Engemann is editor-in-chief of the International Journal of Business Continuity and Risk Management. Professionals from a number of Wall Street banking firms and Fortune 500 companies attend his graduate courses in business continuity and risk management.

Douglas M. Henderson, FSA, CBCP, is President of Disaster Management, Inc. and has consulting experience of 20+years in all areas of Business Continuity and Emergency Response Management. He is the author of several books and templates for business continuity planning.

This is a book that will inform the novice, support the expert and enhance every business continuity planner's efforts to create a resilient organization. The book is well organized as an instructional tool, a reference guide, and a toolkit for practitioners.... an executive, a student, or a practitioner who absorbs the content of this book will be better prepared to function in a field where preparedness is absolutely essential.
-Thomas D. Phelan, PhD, Program Director, Emergency and Disaster Management and Fire Science at American Public University System; Founding Member of the U.S. Department of Homeland Security

Practitioners constantly emphasize the necessity of a holistic approach and I am pleased to see this new book does just that. It is also important to blend theory with practice in this hands-on field; again this is accomplished by authors who have extensive academic and business continuity and emergency management experience. They bring the subject to life with rich teaching and learning features, making it an essential read for students and practitioners alike.
-Phil Kelly, DBA, FHEA, (FIRM); Senior Lecturer, Liverpool (UK) Business School; Lead Examiner, Risk Decisions, The Institute of Risk Management (IRM)

As cybersecurity incidents--ranging from data breaches and denial-of-service attacks to computer fraud and ransomware--become more common, a cyberinsurance industry has emerged to provide coverage for any resulting liability, business interruption, extortion payments, regulatory fines, or repairs. In this book, Josephine Wolff offers the first comprehensive history of cyberinsurance, from the early Internet Security Liability policies in the late 1990s to the expansive coverage offered today. Drawing on legal records, government reports, cyberinsurance policies, and interviews with regulators and insurers, Wolff finds that cyberinsurance has not improved cybersecurity or reduced cyber risks.

Wolff examines the development of cyberinsurance, comparing it to other insurance sectors, including car and flood insurance; explores legal disputes between insurers and policyholders about whether cyber-related losses were covered under policies designed for liability, crime, or property and casualty losses; and traces the trend toward standalone cyberinsurance policies and government efforts to regulate and promote the industry. Cyberinsurance, she argues, is ineffective at curbing cybersecurity losses because it normalizes the payment of online ransoms, whereas the goal of cybersecurity is the opposite--to disincentivize such payments to make ransomware less profitable. An industry built on modeling risk has found itself confronted by new technologies before the risks posed by those technologies can be fully understood.

Unveil the power of safety culture in this thought-provoking and inspiring read that challenges the way we think about employee safety.

The Safety Investment will leave you with a newfound appreciation for the human lives behind the hard hats and remind us all of the immense cost of neglecting their well-being.

Direct and challenging, this book poses tough questions to those in management and supervision and reveals the heartbreaking realities of the families affected by workplace tragedy. It's time to face the truth that the pain, suffering, and heartache caused by accidents cannot be described in words.

But it's never too late to make a change.

Are you, as a CEO, CFO, COO, or executive, ready to lead the way in proactively investing in the safety of your employees? Safety must come before profits, and the reputation of your company depends on it. So, ask yourself, what is a life worth to you? It's time to make a life-changing impact on the safety culture of your workplace. Safety is an investment, not only in your employees but in your company.

The choice is yours, what is a life worth, and what are you willing to accept, the consequences are life-changing. Are you ready to accept this challenge?

Let author, Kevin L. Glaser, CPCU, CIC, SCLA, ARM, AAI, AIC, ARM-P, AIS, share with you his wealth of first-hand experiences gained in his roles as insurance company adjuster, underwriter, marketing representative, risk manager, and expert witness over a period of thirty years.

This revised third edition contains expanded content in most chapters, including factors affecting the price of insurance, litigation related information, comparisons of the insurance industry to the automobile industry, as well as the addition of an index and new easier-to-read book formatting.

Who should read Inside the Insurance Industry - Third Edition? This book contains useful information for attorneys, new insurance company hires, risk managers, financial planners, business owners, college students taking insurance courses and individuals who purchase insurance to protect their financial well-being.

Sample areas of interest to readers include: -Mechanisms and processes by which insurance is sold-Identification of various distribution methods-Definitions of common industry terminology-Internal workings of insurance companies-Discussion of responsibilities of departments such as marketing, claims, underwriting, policy services, audit, loss control, legal, actuary, subrogation, internal audit, product development, information technology and management-Little known factors that impact insurance companies and policyholders-Factors affecting the price of insurance-How to get the best insurance deal-When (and how) to make an insurance claim-External resources available to assist purchasers of insurance-Consultants-Public adjusters-Risk management-Risk manager essential responsibilities-Sample case study-Litigation-related information-What the future holds for the insurance industryThis book is written in an easy-to-understand format which allows people with limited experience working with insurance to better understand many areas of insurance which were previously unknown to them. It contains just the right mix of broad and specific information.

All of the above are valuable reasons to purchase Inside the Insurance Industry - Third Edition. But the #1 reason for you to buy this book is that it will save you money!

• Perform better on the Insurance Adjuster licensing Exams
• Learn faster when in class and retain more information
• Feel more confident in state examinations
• Read faster and with more efficiency
• Gain more satisfaction in learning
The Insurance Adjuster Exam Success Guide is different from traditional review books because it focuses on the exam's Insider's Language. It is an outstanding supplement to a traditional review program. It helps your preparation for the exam become easier and more efficient. The strategies, puzzles, and questions give you enough exposure to the Insider Language to use it with confidence and make it part of your long-term memory. The Insurance Adjuster Exam Success Guide is an awesome tool to use before a course of study as it will help you develop a strong working Insider's Language before you even begin your review. Learn the Secret to Success on the Insurance Adjuster Exam After nearly 20 years of teaching Lewis Morris discovered a startling fact: Most students didn't struggle with the subject, they struggled with the language. It was never about brains or ability. His students simply didn't have the knowledge of the specific language needed to succeed. Through experimentation and research, he discovered that for any subject there was a list of essential words, that, when mastered, unlocked a student's ability to progress in the subject. Lewis called this set of vocabulary the Insider's Words. When he applied these Insider's Words the results were incredible. His students began to learn with ease. He was on his way to developing the landmark series of Books and applications to teach this Insider's Language to students around the world.Our books and applications are helpful to any student. They are especially helpful to struggling students, English language learners, and students beginning a course of study. The strongest students will also enjoy the puzzle and game aspect of the books. In all cases, the books provide an enjoyable break from the tedious and mundane experience of traditional test preparation. Get your copy today

Demonstrates a broad range of state-of-the-art credit-risk models and underscores their interlinkages

Includes extensive Python code to bring the models, diagnostic tools, and estimation of key inputs parameters to life

Combination of mathematical foundations and practical Python code implementation enriches the reader's understanding and competence in this important field

In their long-awaited book, based on years of practical experience and research, Brian Allen and Rachelle Loyear show you step-by-step how Enterprise Security Risk Management (ESRM) applies fundamental risk principles to manage all security risks. Whether the risks are informational, cyber, physical security, asset management, or business continuity, all are included in the holistic, all-encompassing ESRM approach which will move you from task-based to risk-based security.

• How is ESRM familiar? As a security professional, you may already practice some of the components of ESRM. Many of the concepts - such as risk identification, risk transfer and acceptance, crisis management, and incident response - will be well known to you.
• How is ESRM new? While many of the principles are familiar, the authors have identified few organizations that apply them in the comprehensive, holistic way that ESRM represents - and even fewer that communicate these principles effectively to key decision-makers.
• How is ESRM practical? ESRM offers you a straightforward, realistic, actionable approach to deal effectively with all the distinct types of security risks facing you as a security practitioner. ESRM is performed in a life cycle of risk management including:
  • Asset assessment and prioritization.
  • Risk assessment and prioritization.
  • Risk treatment (mitigation).
  • Continuous improvement.

Throughout Enterprise Security Risk Management: Concepts and Applications, the authors give you the tools and materials that will help you advance you in the security field, no matter if you are a student, a newcomer, or a seasoned professional. Included are realistic case studies, questions to help you assess your own security program, thought-provoking discussion questions, useful figures and tables, and references for your further reading.

By redefining how everyone thinks about the role of security in the enterprise, your security organization can focus on working in partnership with business leaders and other key stakeholders to identify and mitigate security risks. As you begin to use ESRM, following the instructions in this book, you will experience greater personal and professional satisfaction as a security professional - and you'll become a recognized and trusted partner in the business-critical effort of protecting your enterprise and all its assets.

Threats to an organization's operations, such as fraud, IT disruption or poorly designed products, could result in serious losses. Understand the key components of effective operational risk management with this essential book for risk professionals and students.

Fundamentals of Operational Risk Management outlines how to implement a sound operational risk management framework which is embedded in day-to-day business activities. It covers the main operational risk tools including categorisation, risk and control self-assessment and scenario analysis, and explores the importance of risk appetite and tolerance.

With case studies of major operational risk events to illustrate each concept, this book demonstrates the value of ORM and how it fits with other types of risk management. There is also guidance on the regulatory treatment of operational risk and the importance of risk culture in any organization. Master the essentials and improve the practice of operational risk management with this comprehensive guide.

Technology failures, data loss, issues with providers of outsourced services, misconduct and mis-selling are just some of the top risks that the financial industry faces. Operational risk management is, simply, a commercial necessity.

The management of operational risk has developed considerably since its early years. Continued regulatory focus and catastrophic industry events have led to operational risk becoming a crucial topic on any senior management team's agenda. This book is a practical guide for practitioners which focuses on how to establish effective solutions, avoid common pitfalls and apply best practice to their organizations.

Filled with frameworks, examples and diagrams, this book offers clear advice on key practices including conducting risk assessments, assessing change initiatives and designing key risk indicators. This new edition of Operational Risk Management in Financial Services also features two new chapters reflecting on the future of operational risk management, from cyber risk to GenAI, and guides practitioners in incorporating ESG into their day-to-day strategies. This is the essential guide for professionals looking to derive value out of operational risk management, rather than applying a compliance 'tick box' approach.

As a longtime leader and innovator in the risk management industry, Ken Bingham holds nothing back, keeping it honest and practical for the reader as he lends his decades of wisdom in support of risk and safety companies, startups, and anyone considering a career in risk management. In his view, the industry has spent more than fifty years of lagging when it comes to leveraging the available data, and with his insights and the insights of his company, Risk Alive, he intends to deliver the industry's understanding not just into the present, but into an exciting future.

Guided by evidential truths presented in a warm, honest storytelling style, The Soul of Risk will positively transform the way you think about a potential career in risk and safety. As Bingham explores and presents the enormously valuable (and currently untapped) data, he presents hidden learnings, renews the call for young people to join this incredibly exciting career path, and turns everything you think you know about risk upside down.

The world has changed. Most businesses and industries are open to sharing data to make themselves better, quicker, and more cost-efficient at what they do. As someone working in (or considering working in) a career in risk management, there has never been a better opportunity to change your perspective on how to use this new horizon of data to make the world a safer and better place. A career in risk and safety is so much more than just a career; with the right tools and the right knowhow, you can, as the subtitle suggests, transform yourself into a modern-day superhero.

In an increasingly complex and volatile world, mastering the art of risk assessment and risk management has become paramount. From financial institutions to healthcare organizations, and from startups to multinational corporations, individuals and businesses alike face an array of uncertainties that can make or break their success.

This book explores the intricate interplay between risk identification, evaluation, and mitigation. Through a holistic approach, this book equips readers with the tools and strategies needed to embrace uncertainty, transform it into opportunities, and safeguard against potential threats.

Inside these pages, you will discover:

A comprehensive framework for understanding risk assessment and risk management, including the key principles, methodologies, and best practices employed by industry leaders.

- Practical techniques to identify and categorize risks, enabling you to prioritize and allocate resources effectively.

- Innovative approaches to risk mitigation, such as risk transfer, risk avoidance, risk acceptance, and risk reduction.

- Insights on integrating risk management into your organization's culture, creating a proactive mindset that prepares for the unexpected.

- The role of technology, data analytics, and artificial intelligence in enhancing risk assessment and management processes.

Whether you are a seasoned risk professional or just beginning your journey into risk management, the book provides a roadmap to navigate the labyrinth of risks that surround us. By leveraging the power of knowledge and embracing uncertainty, you can transform risk from a potential liability into a catalyst for growth and success. Equip yourself with the essential skills and strategies needed to thrive in an unpredictable world.

In an increasingly complex and volatile world, mastering the art of risk assessment and risk management has become paramount. From financial institutions to healthcare organizations, and from startups to multinational corporations, individuals and businesses alike face an array of uncertainties that can make or break their success.

This book explores the intricate interplay between risk identification, evaluation, and mitigation. Through a holistic approach, this book equips readers with the tools and strategies needed to embrace uncertainty, transform it into opportunities, and safeguard against potential threats.

Inside these pages, you will discover:

A comprehensive framework for understanding risk assessment and risk management, including the key principles, methodologies, and best practices employed by industry leaders.

- Practical techniques to identify and categorize risks, enabling you to prioritize and allocate resources effectively.

- Innovative approaches to risk mitigation, such as risk transfer, risk avoidance, risk acceptance, and risk reduction.

- Insights on integrating risk management into your organization's culture, creating a proactive mindset that prepares for the unexpected.

- The role of technology, data analytics, and artificial intelligence in enhancing risk assessment and management processes.

Whether you are a seasoned risk professional or just beginning your journey into risk management, the book provides a roadmap to navigate the labyrinth of risks that surround us. By leveraging the power of knowledge and embracing uncertainty, you can transform risk from a potential liability into a catalyst for growth and success. Equip yourself with the essential skills and strategies needed to thrive in an unpredictable world.