List of Illustrations


                    Chapter 1

                        FIGURE 1.1 The CIA Triad

                        FIGURE 1.2 The five elements of AAA services


                        FIGURE 1.3 Strategic, tactical, and operational plan timeline
                        comparison

                        FIGURE 1.4 Levels of government/military classification

                        FIGURE 1.5 Commercial business/private sector classification
                        levels

                        FIGURE 1.6 The comparative relationships of security policy
                        components

                        FIGURE 1.7 An example of diagramming to reveal threat
                        concerns


                        FIGURE 1.8 An example of diagramming to reveal threat
                        concerns

                    Chapter 2

                        FIGURE 2.1 An example of separation of duties related to five
                        admin tasks and seven administrators

                        FIGURE 2.2 An example of job rotation among management
                        positions

                        FIGURE 2.3 Ex-employees must return all company property


                        FIGURE 2.4 The elements of risk

                        FIGURE 2.5 The six major elements of quantitative risk
                        analysis

                        FIGURE 2.6 The categories of security controls in a defense-
                        in-depth implementation

                        FIGURE 2.7 The six steps of the risk management framework