Expert guidance on planning
and implementing a risk assessment and
protecting your business information. In the
knowledge economy, organisations have to be
able to protect their information assets.
Information security management has,
therefore, become a critical corporate
discipline. The international code of
practice for an information security
management system (ISMS) is ISO27002. As the
code of practice explains, information
security management enables organisations to
ensure business continuity, minimise
business risk, and maximise return on
investments and business opportunities.
ISMS requirements The requirements for an
ISMS are specified in ISO27001.
Under ISO27001, a risk assessment has to be
carried out before any controls can be
selected and implemented, making risk
assessment the core competence of
information security management. This book
provides information security and risk
management teams with detailed, practical
guidance on how to develop and implement a
risk assessment in line with the
requirements of ISO27001. International best
practice Drawing on international best
practice, including ISO/IEC 27005, NIST
SP800-30 and BS7799-3, the book explains in
practical detail how to carry out an
information security risk assessment. It
covers key topics, such as risk scales,
threats and vulnerabilities, selection of
controls, and roles and responsibilities,
and includes advice on choosing risk
assessment software.
| - File: |
 pdf |
| - Pages: | 181 |
| - Language: |
 English |
| - Size: | 3.8 MB |
| - Code: | E-Book-ISO27001-Ris |
Below is a list of documents you will find in the E-book. Click on index file button to see which contents are included.
|
|
|
|
|
|
|
|
|
The IT Toolkit has truly revolutionized our IT operations. It's the foundation of our SOPs, helps generate run books, reduces training costs, and boosts user satisfaction.
After implementing the IT Toolkit, we now have a well-organized IT plan that's professional and easy for everyone to access and use.
Our clients have responded positively. Even those who had information, found ours better organized, making us more efficient and improving our IT management.
The toolkit offers a framework for best practices, ensuring that as practices evolve, our documentation system adapts seamlessly.
The IT Toolkit brings structure to documentation management, reducing the workload on engineers so they can focus more on clients. It's a game changer.
The IT Toolkit prevents duplicate entries and has replaced two other tools, making it much more effective and faster. Our engineers love it!
The IT Toolkit is incredibly easy to use with no ramp-up time. It's a straightforward process that gives clients control while simplifying their workflow.
The IT Toolkit has given me a better understanding of IT management efficiency and provides an easy, friendly way to improve our processes.
The toolkit has helped me organize my thoughts and training strategies with our IT team, making everything more streamlined.
Excellent IT Toolkit! It's essential for all CIOs and technology managers looking to enhance their operations.
A very useful toolkit, one of the best I've used. I wish every IT manager could benefit from it.
These toolkits have boosted my confidence and empowered me to grow as an IT Manager.