• Free Shipping on all orders in Australia
  • Over 7 million books in stock
  • Proud to be B-Corp
  • We aim to be carbon neutral by 2022
  • Over 120,000 Trustpilot reviews
Item 1 of 0
ISO27001/ISO27002 By Alan Calder

ISO27001/ISO27002 by Alan Calder

Condition - Well Read
Only 1 left


The perfect introduction to the principles of information security management and ISO27001:2013

ISO27001/ISO27002 Summary

ISO27001/ISO27002: A Pocket Guide: 2013 by Alan Calder

Protect your organisation's information assets using ISO27001:2013 Information is one of your organisation's most important resources. Keeping that information secure is therefore vital to your business. This handy pocket guide is an essential overview of two key information security standards that cover the formal requirements (ISO27001:2013) for creating an Information Security Management System (ISMS), and the best-practice recommendations (ISO27002:2013) for those responsible for initiating, implementing or maintaining it. Furthering the objectives of your organisation Information security means much more than a technology solution, and requires buy-in from senior managers and the collaboration of all staff in the organisation. For this reason, ISO27001 is not a one-size-fits-all solution, nor is it designed to be a static, fixed entity. By looking at ISO27001 and ISO27002 together, this pocket guide gives a wider view of what it means to implement an ISO27001 ISMS. Creating an ISMS based on ISO27001/ISO27002 will help you to: *improve efficiency by having systems and procedures in place, enabling you to focus more on your core business; *protect your information assets from a wide range of cyber threats such as criminal activity and fraud, user errors, outside attack, insider compromise and system failure; *manage risk systematically and put in place a plan to eliminate or reduce cyber threats to your organisation; *prepare for the worst, as ISO27001 requires you to monitor information security events, enabling earlier detection of threats or processing errors, and faster resolution. Completely up to date with the latest 2013 release of ISO27001, ISO27001/ISO27002: A Pocket Guide covers: *The ISO/IEC 27000:2013 family of information security standards *Background to the standards certification process *The ISMS and ISO27001:2013 *Specification vs. Code of Practice *Documentation and Records *Management Responsibility *Policy and Scope *Risk Assessment *Implementation *Continual Improvement

About Alan Calder

Steve G Watkins managed the world's first successful BS7799 (the forerunner of ISO27001) implementation project and leads the consultancy and training services of IT Governance. He is Chair of the ISO/IEC 27001 User Group, the UK Chapter of the ISMS International User Group, and an ISMS Technical Assessor for UKAS, advising on their assessments of certification bodies offering accredited certification. He has over 20 years' experience of managing integrated management systems, including maintenance of Information Security, Quality, Environmental and Investor in People certifications. His experience includes senior management positions in both the public and private sector

Table of Contents

Introduction; 1: Information Security - What's That? Who does it matter to? 2: It's Not IT; 3: ISO 27001 and the Management System Requirements; 4: Information Assets and the Information Security Risk Assessment; 5: Information Security Controls; 6: Certification; 7: Signposting; Terms; ITG Resources

Additional information

ISO27001/ISO27002: A Pocket Guide: 2013 by Alan Calder
Used - Well Read
IT Governance Publishing
Book picture is for illustrative purposes only, actual binding, cover or edition may vary.
This is a used book. We do our best to provide good quality books for you to read, but there is no escaping the fact that it has been owned and read by someone else previously. Therefore it will show signs of wear and may be an ex library book

Customer Reviews - ISO27001/ISO27002