Download An Introduction to Information Security and ISO 27001 by Steve G Watkins PDF

By Steve G Watkins

ISBN-10: 1905356692

ISBN-13: 9781905356690

Show description

Read or Download An Introduction to Information Security and ISO 27001 PDF

Best project management books

Project Management Framework

This e-book covers the framework of venture administration, a self-discipline that's topical in lots of quarters. The goals of ‘Project administration Framework’ are to appreciate venture administration and to stimulate and give a contribution to a established state of mind in making use of this self-discipline. during this paintings, a platforms view to undertaking administration is defined, in line with the conclusion that administration is a synthesis or inverse challenge.

Fixing the Game: Bubbles, Crashes, and What Capitalism Can Learn from the NFL

American capitalism is in dire straits, stuck in a deadly development of accelerating volatility, lowering investor returns, and ongoing undesirable habit via executives. And it’s getting worse. because the flip of the twenty-first century, we’ve noticeable big value-destroying industry meltdowns and a string of ethics breaches, together with accounting scandals, options-backdating schemes, and the subprime loan debacle.

The human side of project leadership

To a wide quantity, venture good fortune relies on human habit - relatively the habit of the crew chief. venture administration education almost always specializes in gaining knowledge of the instruments and functions of venture administration, similar to operational functionality, making plans and funds administration. stable management talents permit a undertaking supervisor to harness the strength and functions of a undertaking group in the sort of manner that the functionality of the group is larger than the sum of its elements.

Additional resources for An Introduction to Information Security and ISO 27001

Sample text

Terms Definitions that have been taken from ISO/IEC 27002:2005 are identified thus: * Definitions that have been taken from ISO/IEC 27001:2005 are identified thus: ** Additional definitions that have been taken from BS7799-3:2006 are identified thus: *** Definitions that have been taken from ISO/IEC 20000-1:2005 are identified thus: **** Accreditation: the procedure through which an authoritative body formally recognises a person’s or organisation’s competence to carry out specified tasks. Not to be confused with certification.

ISMS: see Information security management system. ISO: acronym, from the Greek isos (‘equal to’), adopted by the International Organisation for Standardisation – the world’s largest developer of standards. Its membership comprises the nationalstandards bodies of countries around the world. ISO27002:2005: the international code of best practice for information security which underpins and provides guidance for the implementation of an ISMS, specifically the revised version issued in 2005. It includes individual information security controls, implementation guidance and other information relating to these.

11 These are additional to the improvement-process requirements of maintaining an ISMS, and deal with what should be done in reaction to, and in order to recover from, a security breach. The severity of information security breaches can vary massively. If the problem is likely to cause a significant challenge to the normal running of operations it is desirable for some form of business continuity to be invoked. This area of control includes the need to regularly test the business continuity plans (BCPs) in order to learn from the experience and improve the plans ahead of their being called upon for real.

Download PDF sample

Rated 4.18 of 5 – based on 29 votes