Nonfiction

IT Governance: An International Guide to Data Security and ISO 27001/ISO 27002

IT Governance: An International Guide to Data Security and ISO 27001/ISO 27002

  • Downloads:9154
  • Type:Epub+TxT+PDF+Mobi
  • Create Date:2021-03-10 08:12:36
  • Update Date:2025-09-06
  • Status:finish
  • Author:Alan Calder
  • ISBN:B07YDZ52KS
  • Environment:PC/Android/iPhone/iPad/Kindle
  • Download

Summary

Faced with the compliance requirements of increasingly punitive information and privacy-related regulation, as well as the proliferation of complex threats to information security, there is an urgent need for organizations to adopt IT governance best practice。 IT Governance is a key international resource for managers in organizations of all sizes and across industries, and deals with the strategic and operational aspects of information security。

Now in its seventh edition, the bestselling IT Governance provides guidance for companies looking to protect and enhance their information security management systems (ISMS) and protect themselves against cyber threats。 The new edition covers changes in global regulation, particularly GDPR, and updates to standards in the ISO/IEC 27000 family, BS 7799-3:2017 (information security risk management) plus the latest standards on auditing。 It also includes advice on the development and implementation of an ISMS that will meet the ISO 27001 specification and how sector-specific standards can and should be factored in。 With information on risk assessments, compliance, equipment and operations security, controls against malware and asset management, IT Governance is the definitive guide to implementing an effective information security management and governance system。

Download

Reviews

Kerry Pickens

I work in IT security so I found this book to be very interesting。 It is a well written book about how to implement effective management practices in an IT environment。 It is a British book, so expect there to be some cultural differences。 The main issue with implementing any compliance program is that it has to be part of the mission and goals of the organization, and documented in the job descriptions and performance goals。 Without those key steps, you will just be spinning your wheels try to I work in IT security so I found this book to be very interesting。 It is a well written book about how to implement effective management practices in an IT environment。 It is a British book, so expect there to be some cultural differences。 The main issue with implementing any compliance program is that it has to be part of the mission and goals of the organization, and documented in the job descriptions and performance goals。 Without those key steps, you will just be spinning your wheels try to make changes to the organization。 。。。more

Dolf van der Haven

This book is the absolute authoritative description of Information Security requirements of ISO/IEC 27001:2013 and ISO/IEC 27002。 Its title is misleading, for IT Governance is about much more than only Information Security (and is covered in ISO/IEC 38500 series of standards)。Despit a handful of typos in the reference to some of the clauses, this is the best reference book on the 27000 series of standards I have found。

Darren

This is a bit of a specialist book that focussed on data security issues and ISO27001/2, all under the heading of IT governance。 Now in its sixth revision, this updated book still continues to provide timely, informative counsel to those who are looking to establish best practice guidelines in this challenging, changing area。Clearly this book cannot focus on legislation from every country in the world, yet it does look at many key international markets and provides advice on compliance within ke This is a bit of a specialist book that focussed on data security issues and ISO27001/2, all under the heading of IT governance。 Now in its sixth revision, this updated book still continues to provide timely, informative counsel to those who are looking to establish best practice guidelines in this challenging, changing area。Clearly this book cannot focus on legislation from every country in the world, yet it does look at many key international markets and provides advice on compliance within key information security responsibilities。 This is not a practical guide to securing your server or network in that sense, yet it will give you sufficient advice to develop and operate a manageable policy that, in turn, will work through practical cases and structures to secure your systems and stored data。 Capable advice about developing information security policies and underlying risk assessment procedures is given in a clear, unambiguous and overtly jargon-free manner。 Even often overlooked areas such as human resources security and asset management are discussed。In many ways this is a book of doom, full of things you’d rather not happen and its advice will help you strategize and implement a delivered solution that will hopefully reduce or mitigate the risk。 With IT there is never a true risk-free solution, but as much advanced planning and focussed on-going strategic operation as possible will be a wise investment。 Then, should you suspect the worst to happen, you may be in a better position to respond and reduce the damage。As you may expect, this book is crammed full of information and thus the extensive, comprehensive index is welcomed。 This is not a book for everyone, but for those who need this kind of information it will be an indispensible aid。 Many others may get a passing benefit from a chapter or two and it could be one of those best-shared books within a company。 You might want to get your own copy though, as it can become a regularly consulted companion。Autamme。com 。。。more

Reference

google book https://www.google.com/search?tbm=bks&q=IT Governance: An International Guide to Data Security and ISO 27001/ISO 27002

hathitrust digital library https://babel.hathitrust.org/cgi/ls?q1=IT Governance: An International Guide to Data Security and ISO 27001/ISO 27002&field1=ocr&a=srchls&ft=ft&lmt=ft

The British Library https://bll01.primo.exlibrisgroup.com/discovery/search?query=any,contains,IT Governance: An International Guide to Data Security and ISO 27001/ISO 27002&tab=LibraryCatalog&search_scope=Not_BL_Suppress&vid=44BL_INST:BLL01&lang=en&offset=0