|
|
|
An Executive Guide to ISO 17799/ISO 27001
Alan Calder, Steve Watkins
ISBN: 9780749447489
Format: Paperback
Publisher:Kogan Page Ltd
Write a review
The development of IT Governance, which recognizes the convergence between business and IT management, makes it essential for managers at various levels and in organizations of different sizes to understand how best to deal with information security risks. This title explores the legislation, including the launch of ISO/IEC 27001.
The development of IT Governance, which recognizes the convergence between business and IT management, makes it essential for managers at all levels and in organizations of all sizes to understand how best to deal with information security risks. "International IT Governance" explores new legislation, including the launch of ISO/IEC 27001, which makes a single, global standard of information security best practice available.
| ISBN | 0749447486 | | Pages | 384 | | ISBN13 | 9780749447489
(What's this?) | | Volumes | 1 | | Publisher | Kogan Page Ltd | | Weight (grammes) | 664 | | Imprint | Kogan Page Ltd | | Published in | London | | Format | Paperback | | Height (mm) | 235 | | Publication date | 03 Aug 2006 | | Width (mm) | 157 | | Library of Congress | QA76.9.A25 | | Spine width (mm) | 25 | | DEWEY | 658.4038 | | Academic level | Professional / Scholarly | | DEWEY edition | DC22 | |
|
| |
| 1 | | Why is information security necessary? | | 9 | | 2 | | Sarbanes-Oxley and regulatory compliance | | 23 | | 3 | | Information security standards | | 31 | | 4 | | Organizing information security | | 45 | | 5 | | Information security policy and scope | | 63 | | 6 | | The risk assessment and statement of applicability | | 73 | | 7 | | External parties | | 95 | | 8 | | Asset management | | 109 | | 9 | | Human resources security | | 127 | | 10 | | Physical and environmental security | | 145 | | 11 | | Equipment security | | 157 | | 12 | | Communications and operations management | | 167 | | 13 | | Controls against malicious software (malware) and back-ups | | 181 | | 14 | | Network security management and media handling | | 195 | | 15 | | Exchanges of information | | 203 | | 16 | | Electronic commerce services | | 211 | | 17 | | E-mail and Internet use | | 223 | | 18 | | Access control | | 231 | | 19 | | Network access control | | 249 | | 20 | | Operating system access control | | 261 | | 21 | | Application access control and teleworking | | 267 | | 22 | | Systems acquisition, development and maintenance | | 275 | | 23 | | Cryptographic controls | | 281 | | 24 | | Security in development and support processes | | 289 | | 25 | | Monitoring and information security incident management | | 299 | | 26 | | Business continuity management | | 315 | | | More... | | |
"explores new legislation, including the launch of iso/iec 27001, which makes a single global standard of information security best practice available." information security bulletin "a guide for managers and executives responsible for compliance and it management. it explores new legislation including iso/iec 27001, the single global standard for information security best practice." risk uk "a definitive guide to new legislation and practice for information security professionals and executives with an interest in business, regulatory compliance and it management" abstracts of public administration, development and the environment "experts in the field address the critical role of it governance...relevant regulation...and policy and practice specifics of meeting iso/iec 27001 as the new global standard of information security best practice available." scitech book news  Be the first to write a customer review
|
|
|
|
|
Enlarge
