What do you think?
Rate this book
Introduction to Information Security and Iso27001
This pocket guide will suit both individuals who need an introduction to a topic that they know little about, and also organizations implementing, or considering implementing, some sort of information security management regime, particularly if using ISO/IEC 27001. The guide furnishes readers with an understanding of the basics of information security, a definition of what information security means; how managing information security can be achieved using an approach recognized world-wide; the sorts of factors that need to be considered in an information security regime, including how the perimeters of such a scheme can be properly defined; how an information security management system can ensure it is maximizing the effect of any budget it has; what sort of things resources might be invested in to deliver a consistent level of assurance; and how organizations can demonstrate the degree of assurance they offer with regards to information security, how to interpret claims of adherence to the ISO 27001 standard and exactly what it means. Corporate bodies will find this book useful at a number of stages in any information security project, including at the decision-making stage, at project initiation stage, and as part of an on-going awareness campaign. The guide is designed to be read without having to frequently break from the text, there is also a list of abbreviations along with terms and definitions in chapter 7 for easy reference.
46 pages, Paperback
First published October 1, 2008
8 people want to read
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
Displaying 1 of 1 review
November 13, 2020
This book provides a high level detail about information security and its application. It would be a good start of anyone who is interested in info security.
Displaying 1 of 1 review