0%

Book Description

Discover the simple steps to implementing information security standards using ISO 27001, the most popular information security standard across the world. You’ll see how it offers best practices to be followed, including the roles of all the stakeholders at the time of security framework implementation, post-implementation, and during monitoring of the implemented controls. Implementing an Information Security Management System provides implementation guidelines for ISO 27001:2013 to protect your information assets and ensure a safer enterprise environment. 

This book is a step-by-step guide on implementing secure ISMS for your organization. It will change the way you interpret and implement information security in your work area or organization. 


What You Will Learn
    • Discover information safeguard methods
    • Implement end-to-end information security
    • Manage risk associated with information security
    • Prepare for audit with associated roles and responsibilities
    • Identify your information risk
    • Protect your information assets
    Who This Book Is For

    Security professionals who implement and manage a security framework or security controls within their organization. This book can also be used by developers with a basic knowledge of security concepts to gain a strong understanding of security standards for an enterprise.

    Table of Contents

    1. Cover
    2. Front Matter
    3. 1. The Need for Information Security
    4. 2. Assessing Needs and Scope
    5. 3. Project Kick-Off
    6. 4. Initial Risk Assessment
    7. 5. Risk Management Approach
    8. 6. Execution
    9. 7. Internal Audit
    10. 8. Management Review
    11. 9. External Audit
    12. 10. Continual Improvement
    13. Back Matter
    3.81.30.41