Organizations with computer networks, Web sites, and employees carrying laptops and Blackberries face an array of security challenges. Among other things, they need to keep unauthorised people out of the network, thwart Web site hackers, and keep data safe from prying eyes or criminal hands. This book provides a high-level overview of these challenges and more. But it is not for the hard-core IT security engineer who works full time on networks. Instead, it is aimed at the non-technical executive with responsibility for ensuring that information and assets stay safe and private. Written by a practicing information security officer, the book contains the latest information and gives readers the knowledge they need to make better business decisions.The book covers the following technical issues in a non-technical manner: the concept of "defence in depth"; network design; business-continuity planning; authentication and authorization; providing security for your mobile work force; hackers and the challenges they can present; viruses, Trojans, and worms.The author goes beyond the technical and covers highly important topics related to data security like outsourcing, contractual considerations with vendors, data privacy laws, and hiring practices. In short, the author gives the reader a 360-degree look at data security: What to be worried about; what to look for; the compromises regarding cost, efficiency, and speed; what different technologies can and can't do; and how to make sure technical professionals are looking at the key threats. Importantly, it conveys information in an understandable way, meaning managers won't need to rely solely on the IT people in their own company. Hackers and information thieves are getting smarter and bolder every day. "Information Technology and Data" is your first line of defence.