Read more
Informationen zum Autor Alan Calder is founder-director of IT Governance Ltd, which provides IT governance and information security services through its website www.itgovernance.co.uk. He is the author of IT Governance and A Business Guide to Information Security , both published by Kogan Page. Steve Watkins is Head of Corporate Services at HMCPSI and is co-author of IT Governance and A Business Guide to Information Security. Klappentext The development of IT Governance! which recognizes the convergence between business and IT management! makes it essential for managers at all levels and in organizations of all sizes to understand how best to deal with information security risks. International IT Governance explores new legislation! including the launch of ISO/IEC 27001! which makes a single! global standard of information security best practice available. Zusammenfassung International IT Governance is an executive guide to information security focusing on the International Standard which replaces the British Standard in November this year. Inhaltsverzeichnis ** Chapter - 00: Introduction; ** Chapter - 01: Why is information security necessary?; ** Chapter - 02: Sarbanes-Oxley and regulatory compliance; ** Chapter - 03: Information security standards; ** Chapter - 04: Organizing information security; ** Chapter - 05: Information security policy and scope; ** Chapter - 06: The risk assessment and Statement of Applicability; ** Chapter - 07: External parties; ** Chapter - 08: Asset management; ** Chapter - 09: Human resources security; ** Chapter - 10: Physical and environmental security; ** Chapter - 11: Equipment security; ** Chapter - 12: Communications and operations management; ** Chapter - 13: Controls against malicious software (malware) and back-ups; ** Chapter - 14: Network security management and media handling; ** Chapter - 15: Exchanges of information; ** Chapter - 16: Electronic commerce services; ** Chapter - 17: E-mail and internet use; ** Chapter - 18: Access control; ** Chapter - 19: Network access control; ** Chapter - 20: Operating system access control; ** Chapter - 21: Application access control and teleworking; ** Chapter - 22: Systems acquisition, development and maintenance; ** Chapter - 23: Cryptographic controls; ** Chapter - 24: Security in development and support processes; ** Chapter - 25: Monitoring and information security incident management; ** Chapter - 26: Business continuity management; ** Chapter - 27: Compliance; ** Chapter - 28: The ISO/IEC 27001 audit...
