Contents

Search in book...
Toggle Font Controls
Create new playlist

Name your new playlist

Playlist description (optional)
Sign In

Email address

Password

Forgot Password?

or

Continue with Facebook

Continue with Google
Sign Up

Full Name

Email address

Confirm Email Address

Password

or

Continue with Facebook

Continue with Google

Previous Chapter

Nine Steps to Success

CONTENTS

Introduction

The ISO 27000 family

Before you start

Chapter 1: Project Mandate

Strategic alignment

Prioritisation and endorsement

Change management

The CEO’s role

The Project Mandate

Chapter 2: Project Initiation

Project management

Project leadership

Senior management support

Structured approach to implementation

Phased approach

The project plan

Integration with existing security management systems

Quality system integration

Costs and project monitoring

Chapter 3: ISMS Initiation

Continual improvement

Security improvement plan

Expanding the RACI matrix

Four levels of documentation

Documentation approaches

Chapter 4: Management Framework

Endpoint security

Defining boundaries

Network mapping

Cutting corners

Formalise key arrangements

Information security policy

Communication strategy

Chapter 5: Baseline Security Criteria

Chapter 6: Risk Management

Introduction to risk management

Baseline security controls

Risk assessment

Five-step risk assessment process

Risk assessment tools

Nature of controls

Control selection criteria

Statement of applicability

Risk treatment plan

Chapter 7: Implementation

The ‘all persons’ requirement

Staff awareness

Outsourced processes

Chapter 8: Measure, Monitor and Review

Internal audit, and testing

Management review

Chapter 9: Certification

ISO 27001 Resources

ISO 27001:2013 ISMS Documentation Toolkit

(UK) IT Legal Compliance Database

ISO 27001 staff awareness e-learning

ISO27001 Do It Yourself packaged consultancy

ISO 27001 Get A Little Help packaged consultancy

ISO 27001 Get A Lot Of Help packaged consultancy

ISO 27001 bespoke consultancy

ISO 27001 Certified ISMS Lead Implementer Training Course

ISO 27001 Certified ISMS Lead Auditor Training Course

ISO 27005 Certified Risk Management Training Course

ITG Resources

..................Content has been hidden....................

You can't read the all page of ebook, please click here login for view all page.

3.12.36.30