Item description for Information Security Risk Management for ISO27001/ISO17799 (Implementing ISO27001) by Alan Calder...
All organizations today have to respond to a rapidly changing and increasingly threatening range of information security risks - risks which can, if unmitigated, lead to severe financial, regulatory and reputation damage for organizations. Information security investment and control decisions should be specifically driven by the outcome of a risk assessment process that identifies risks to specific information assets. Risk assessment is, in fact, the core competence of information security management. International standards, including ISO/IEC 27001:2005, ISO17799, BS7799-3 and NIST SP 800-30, provide overlapping guidance on risk assessment. This book provides clear, practical and comprehensive guidance on developing a risk management methodology that meets the requirements of ISO27001, the information security management standard, and on carrying out a risk assessment that will help achieve corporate risk management objectives. It is essential reading for anyone involved generally in enterprise risk management and in information security specifically.
Promise Angels is dedicated to bringing you great books at great prices. Whether you read for entertainment, to learn, or for literacy - you will find what you want at promiseangels.com!
Est. Packaging Dimensions: Length: 8.4" Width: 5.4" Height: 0.6" Weight: 0.55 lbs.
Release Date Apr 10, 2007
Publisher IT Governance Ltd
ISBN 1905356234 ISBN13 9781905356232
Availability 0 units.
More About Alan Calder
Alan is the author of "IT Governance - a Manager's Guide" and a founder director of IT Governance Ltd. Before that, he was CEO of Wide Learning, a supplier of e-learning, of Focus Central London and, before that, of Business Link London City Partners (BLLCP). He was also a member of the DTI's Information Age Competitiveness Working Group.
He was for many years a member of the DNV Certification Services Certification Committee, which certifies compliance with international standards including ISO27001/BS7799.
Alan works with a wide range of clients on IT governance and information security projects which include design, implementation and deployment of management systems and the development and writing of White Papers. He also speaks at seminars and presentations on IT governance, regulatory compliance and information security. Alan can be contacted firstname.lastname@example.org.