eBook - ePub

IT Governance

Name: IT Governance
Author: Alan Calder, Steve Watkins

An International Guide to Data Security and ISO 27001/ISO 27002

Alan Calder, Steve Watkins

Share book

English
ePUB (mobile friendly)
Available on iOS & Android

eBook - ePub

IT Governance

An International Guide to Data Security and ISO 27001/ISO 27002

Alan Calder, Steve Watkins

Book details

Book preview

Table of contents

Citations

About This Book

Faced with the compliance requirements of increasingly punitive information and privacy-related regulation, as well as the proliferation of complex threats to information security, there is an urgent need for organizations to adopt IT governance best practice. IT Governance is a key international resource for managers in organizations of all sizes and across industries, and deals with the strategic and operational aspects of information security. Now in its seventh edition, the bestselling IT Governance provides guidance for companies looking to protect and enhance their information security management systems (ISMS) and protect themselves against cyber threats. The new edition covers changes in global regulation, particularly GDPR, and updates to standards in the ISO/IEC 27000 family, BS 7799-3: 2017 (information security risk management) plus the latest standards on auditing. It also includes advice on the development and implementation of an ISMS that will meet the ISO 27001 specification and how sector-specific standards can and should be factored in. With information on risk assessments, compliance, equipment and operations security, controls against malware and asset management, IT Governance is the definitive guide to implementing an effective information security management and governance system.

Frequently asked questions

How do I cancel my subscription?

Simply head over to the account section in settings and click on “Cancel Subscription” - it’s as simple as that. After you cancel, your membership will stay active for the remainder of the time you’ve paid for. Learn more here.

Can/how do I download books?

At the moment all of our mobile-responsive ePub books are available to download via the app. Most of our PDFs are also available to download and we're working on making the final remaining ones downloadable now. Learn more here.

What is the difference between the pricing plans?

Both plans give you full access to the library and all of Perlego’s features. The only differences are the price and subscription period: With the annual plan you’ll save around 30% compared to 12 months on the monthly plan.

What is Perlego?

We are an online textbook subscription service, where you can get access to an entire online library for less than the price of a single book per month. With over 1 million books across 1000+ topics, we’ve got you covered! Learn more here.

Do you support text-to-speech?

Look out for the read-aloud symbol on your next book to see if you can listen to it. The read-aloud tool reads text aloud for you, highlighting the text as it is being read. You can pause it, speed it up and slow it down. Learn more here.

Is IT Governance an online PDF/ePUB?

Yes, you can access IT Governance by Alan Calder, Steve Watkins in PDF and/or ePUB format, as well as other popular books in Negocios y empresa & Gestión de la información. We have over one million books available in our catalogue for you to explore.

Information

Publisher

Kogan Page

Year

2019

ISBN

9780749496968

Edition

Topic

Negocios y empresa

Subtopic

Gestión de la información

Appendix 1

Useful websites

IT Governance Ltd

www.itgovernance.co.uk (archived at https://perma.cc/52C6-BA5J)

Comprehensive library of ISO27001 books, tools and resources

www.itgovernance.co.uk/iso27001 (archived at https://perma.cc/5Z44-FFHT)

Blogs

www.alancalderitgovernanceblog.com (archived at https://perma.cc/Y9WY-KKKQ)

http://blog.itgovernance.co.uk (archived at https://perma.cc/KSG9-6246)

ISO27001 certification-related organizations

United Kingdom Accreditation Service

www.ukas.com (archived at https://perma.cc/PBP9-55AX)

BSI

www.bsigroup.com (archived at https://perma.cc/ERJ8-N2JA)

Bureau Veritas Quality International (BVQI)

www.bureauveritas.co.uk (archived at https://perma.cc/87K2-XPQJ)

DNV GL – Business Assurance

www.dnvgl.com/about/business-assurance/index.html (archived at https://perma.cc/RU25-CU34)

Lloyd’s Register Quality Assurance (LRQA)

www.lr.org/en (archived at https://perma.cc/X8CY-86LH)

NQA Certification

www.nqa.com (archived at https://perma.cc/Z6LN-GX2Q)

SGS

www.sgs.com (archived at https://perma.cc/9WRJ-FBVL)

Microsoft

www.microsoft.com (archived at https://perma.cc/GX4A-BB7A)

www.microsoft.com/download (archived at https://perma.cc/UH3M-5EKJ)

Microsoft Security Centre

https://www.microsoft.com/en-gb/security (archived at https://perma.cc/YY9A-6W65)

Information security

(UK) Alliance Against Intellectual Property Theft

www.allianceforip.co.uk (archived at https://perma.cc/Y5KH-RNNT)

Anti-phishing Working Group

www.antiphishing.org (archived at https://perma.cc/3BMD-EW2H)

British Computer Society

www.bcs.org (archived at https://perma.cc/F2JT-8CR9)

Carnegie Mellon Software Engineering Institute

www.sei.cmu.edu (archived at https://perma.cc/7GK6-8FMN)

Carnegie Mellon Software Engineering Institute Computer Emergency Response Team (CERT) Coordination Centre

www.sei.cmu.edu/about/divisions/cert/index.cfm (archived at https://perma.cc/ C9ZJ-KUQ7)

Centre for Education and Research in Information Assurance and Security

www.cerias.purdue.edu (archived at https://perma.cc/Q2UU-JXBG)

(UK) Centre for the Protection of National Infrastructure

www.cpni.gov.uk (archived at https://perma.cc/3M6L-NUES)

Common Vulnerabilities and Exposures

https://cve.mitre.org (archived at https://perma.cc/ZS35-2RNV)

CWE/SANS Top 25 Most Dangerous Software Errors

http://cwe.mitre.org/top25/ (archived at https://perma.cc/T6SQ-JVHF)

Computer Security Resource Center (US National Institute of Standards and Technology)

csrc.nist.gov (archived at https://perma.cc/Z5WL-42XB)

ENISA

www.enisa.europa.eu (archived at https://perma.cc/Q2UU-JXBG)

(US) Federal Computer Emergency Readiness Team

www.us-cert.gov (archived at https://perma.cc/RV7C-QS8M)

(UK) Federation Against Software Theft

www.fast.org (archived at https://perma.cc/Z8MK-Y2FS)

Forum of Incident Response and Security Teams

www.first.org (archived at https://perma.cc/K8T8-7LSK)

GCHQ, Cheltenham

www.gchq.gov.uk (archived at https://perma.cc/RF95-WKDY)

HMG Cabinet Office Security Policy

www.gov.uk/government/publications/security-policy-framework (archived at https://perma.cc/MB7X-SHGA)

(UK) Information Commissioner

www.ico.org.uk (archived at https://perma.cc/6BTV-VF5H)

Information Systems Audit and Control Association

www.isaca.org (archived at https://perma.cc/M2SL-RC7N)

Information Systems Security Association