International IT Governance: An Executive Guide to ISO 17799/ISO 27001
by Alan Calder, Steve Watkins
An essential resource for business managers at any-sized organization, this book provides the current best practice in managing data and information risks as companies face increasingly complex and dangerous threats to information security.See more details below
Overview
An essential resource for business managers at any-sized organization, this book provides the current best practice in managing data and information risks as companies face increasingly complex and dangerous threats to information security.
Product Details
- ISBN-13:
- 9780749447489
- Publisher:
- Kogan Page, Ltd.
- Publication date:
- 08/31/2006
- Series:
- Kogan Page Series
- Edition description:
- New Edition
- Pages:
- 366
- Product dimensions:
- 6.26(w) x 9.22(h) x 0.94(d)
Table of Contents
| 1 | Why is information security necessary? | 9 |
| 2 | Sarbanes-Oxley and regulatory compliance | 23 |
| 3 | Information security standards | 31 |
| 4 | Organizing information security | 45 |
| 5 | Information security policy and scope | 63 |
| 6 | The risk assessment and statement of applicability | 73 |
| 7 | External parties | 95 |
| 8 | Asset management | 109 |
| 9 | Human resources security | 127 |
| 10 | Physical and environmental security | 145 |
| 11 | Equipment security | 157 |
| 12 | Communications and operations management | 167 |
| 13 | Controls against malicious software (malware) and back-ups | 181 |
| 14 | Network security management and media handling | 195 |
| 15 | Exchanges of information | 203 |
| 16 | Electronic commerce services | 211 |
| 17 | E-mail and Internet use | 223 |
| 18 | Access control | 231 |
| 19 | Network access control | 249 |
| 20 | Operating system access control | 261 |
| 21 | Application access control and teleworking | 267 |
| 22 | Systems acquisition, development and maintenance | 275 |
| 23 | Cryptographic controls | 281 |
| 24 | Security in development and support processes | 289 |
| 25 | Monitoring and information security incident management | 299 |
| 26 | Business continuity management | 315 |
| 27 | Compliance | 327 |
| 28 | The ISO/IEC 27001 audit | 345 |
Customer Reviews
Average Review: