吕博士推荐
快捷搜索
  • To
    图书详情
    代理商:大苹果
    页数:360
    定价:0.00 美元
    上传日期:2020-1-10 0:00:00

    IT GOVERNANCE: AN INTERNATIONAL GUIDE TO DATA SECURITY AND ISO 27001/ISO 27002(7 EDITION)

    Book ID/图书代码: 07682020C00001

    English Summary/英文概要: Faced with the compliance requirements of increasingly punitive information- and privacy-related regulation, as well as the proliferation of complex threats to information security, there is an urgent need for organizations to adopt IT governance best practice. IT Governance is a key international resource for managers in organizations of all sizes and across industries, and deals with the strategic and operational aspects of information security.

    Now in its seventh edition, the bestselling IT Governance provides guidance for companies looking to protect and enhance their information security management systems (ISMS) and protect themselves against cyber threats. The new edition covers changes in global regulation, particularly GDPR, and updates to standards in the ISO/IEC 27000 family, BS 7799-3:2017 (information security risk management) and the latest standards on auditing. It also includes advice on the development and implementation of an ISMS that will meet the ISO 27001 specification and how sector-specific standards can and should be factored in. With information on risk assessments, compliance, equipment and operations security, controls against malware and asset management, IT Governance is the definitive guide to implementing an effective information security management and governance system.

    Chinese Summary/中文概要:

    Awards/获奖情况:Table of Contents

    1 Why is information security

    necessary?

    2 The UK combined code,

    the FRC risk guidance and

    Sarbanes–Oxley

    3 ISO27001

    4 Organizing information

    security

    5 Information security policy

    and scope

    6 The risk assessment and

    Statement of Applicability

    7 Mobile devices

    8 Human resources security

    9 Asset management

    10 Media handling

    11 Access control

    12 User access management

    13 System and application access

    control

    14 Cryptography

    15 Physical and environmental

    security

    16 Equipment security

    17 Operations security

    18 Controls against malicious

    software (malware)

    19 Communications management

    20 Exchanges of information

    21 System acquisition,

    development and

    maintenance

    22 Development and support

    processes

    23 Supplier relationships

    24 Monitoring and information

    security incident management

    25 Business and information

    security continuity

    management

    26 Compliance

    27 The ISO27001 audit

    About the Author/作者介绍: Alan Calder is an acknowledged authority on international cyber security and IT governance. He is the founder and executive chairman of IT Governance Ltd, and his previous roles include CEO of Business Link London City Partners from 1995 to 1998, Focus Central London from 1998 to 2001, Wide Learning from 2001 to 2003 and the Outsourced Training Company in 2005.

    Alan has published a wide range of books on IT governance and information security. These include the market-leading IT Governance: An International Guide to Data Security and ISO27001/ISO27002 (co-written with Steve Watkins), and bestselling guides to complying with regulations such as the GDPR and international standards such as ISO 27001.

    Alan has also developed training courses and consulted for clients in the UK and abroad. He regularly acts as a media commentator and speaker.

    Steve Watkins is Executive Director at GRC International Group plc, chair of the UK ISO/IEC 27001 User Group and contracted technical assessor for UKAS. He is a member of the international technical committee responsible for the ISO 27000 family of standards, and chairs the UK National Standards Body’s technical committee IST/33 (information security, cyber security and privacy protection) that mirrors it.

    Format:HARDCOVER

    Rights Status/版权销售情况:Simplified Chinese/简体中文:AVAILABLE

    Complex/Traditional Chinese/繁体中文:AVAILABLE

    Sales in other countries/其他国家销售情况:

    原文第一章内容:暂无

    手稿:暂无

    大纲:暂无