Fledgling managers who have just learned that they are responsible for the security of their organizations’ data may find this book very useful. Its 177 pages of text and 3 appendices provide overviews of concepts, typical controls, risk-analysis procedures, and human factors concerns, but do not investigate any subject in depth. The preface claims that the book is appropriate for the “systems analyst/designer” as well as the “computing professional,” but it will provide these individuals with only an acquaintance with the relevant concerns.

While the text is sufficiently up-to-date to define the term “virus program” with a precision that is regrettably rare in today’s nonacademic literature, it is not recent enough to contain any material that will help combat either the viruses or the worms that have been making headlines. Readers will have to seek such material, and indeed much else that they would need to fulfill any substantial educational or training requirements, in newer and more thorough sources.