The emergence of a new type of threat to computer security--the computer virus--has attracted much attention from the media, researchers, and software producers. Such viruses create sets of frequently destructive instructions that propagate automatically throughout entire computer networks. The effects can range from temporary disruption to wholesale havoc involving huge losses of data. The problem has been exacerbated more recently by a deluge of superficial media comment that has sensationalized the topic while offering little in the way of concrete facts or knowledgeable guidance. This book is intended to help managers of today's complex information systems respond to the genuine threat posed by computer viruses in an informed and efficient manner. It presents a concise overview of the problem and a detailed strategy for minimizing the potential risk. It provides a nontechnical explanation of computer viruses based on a conceptual framework adaptable to the constant emergence of new kinds of viruses and their antidotes. The book suggests practical management approaches that are workable within large-scale, integrated systems including those with ongoing security and control devices. There are a number of useful technical appendices, however the book is written to be read and used by those who may not have a technical background, including information systems managers, security consultants, and teachers and advanced students of management interested in information systems.