Information Security based on ISO 27001/ISO 27002

Information Security based on ISO 27001/ISO 27002

Author: Alan Calder

Publisher: Van Haren

Published: 2009-07-31

Total Pages: 101

ISBN-13: 9087535422

DOWNLOAD EBOOK

Information is the currency of the information age and in many cases is the most valuable asset possessed by an organisation. Information security management is the discipline that focuses on protecting and securing these assets against the threats of natural disasters, fraud and other criminal activity, user error and system failure. This Management Guide provides an overview of the two international information security standards, ISO/IEC 27001 and ISO 27002. These standards provide a basis for implementing information security controls to meet an organisation’s own business requirements as well as a set of controls for business relationships with other parties. This Guide provides: An introduction and overview to both the standards The background to the current version of the standards Links to other standards, such as ISO 9001, BS25999 and ISO 20000 Links to frameworks such as CobiT and ITIL Above all, this handy book describes how ISO 27001 and ISO 27002 interact to guide organizations in the development of best practice information security management systems.


IT Governance

IT Governance

Author: Alan Calder

Publisher: Kogan Page Publishers

Published: 2012-04-03

Total Pages: 384

ISBN-13: 0749464860

DOWNLOAD EBOOK

For many companies, their intellectual property can often be more valuable than their physical assets. Having an effective IT governance strategy in place can protect this intellectual property, reducing the risk of theft and infringement. Data protection, privacy and breach regulations, computer misuse around investigatory powers are part of a complex and often competing range of requirements to which directors must respond. There is increasingly the need for an overarching information security framework that can provide context and coherence to compliance activity worldwide. IT Governance is a key resource for forward-thinking managers and executives at all levels, enabling them to understand how decisions about information technology in the organization should be made and monitored, and, in particular, how information security risks are best dealt with. The development of IT governance - which recognises the convergence between business practice and IT management - makes it essential for managers at all levels, and in organizations of all sizes, to understand how best to deal with information security risk. The new edition has been full updated to take account of the latest regulatory and technological developments, including the creation of the International Board for IT Governance Qualifications. IT Governance also includes new material on key international markets - including the UK and the US, Australia and South Africa.


ISO 27001 Controls - A Guide to Implementing and Auditing

ISO 27001 Controls - A Guide to Implementing and Auditing

Author: Bridget Kenyon

Publisher:

Published: 2020

Total Pages: 21989

ISBN-13: 9781787782402

DOWNLOAD EBOOK

Ideal for information security managers, auditors, consultants and organisations preparing for ISO 27001 certification, this book will help readers understand the requirements of an ISMS (information security management system) based on ISO 27001.


Safety Professional's Reference and Study Guide, Third Edition

Safety Professional's Reference and Study Guide, Third Edition

Author: W. David Yates

Publisher: CRC Press

Published: 2020-03-19

Total Pages: 903

ISBN-13: 1000029786

DOWNLOAD EBOOK

This new edition serves both as a reference guide for the experienced professional and as a preparation source for those desiring certifications. It’s an invaluable resource and a must-have addition to every safety professional’s library. Safety Professional’s Reference and Study Guide, Third Edition, is written to serve as a useful reference tool for the experienced practicing safety professional, as well as a study guide for university students and those preparing for the Certified Safety Professional examination. It addresses major topics of the safety and health profession and includes the latest version of the Board of Certified Safety Professional (BCSP) reference sheet, a directory of resources and associations, as well as state and federal agency contact information. Additionally, this new edition offers new chapters and resources that will delight every reader. This book aids the prospective examination candidate and the practicing safety professional, by showing them, step-by-step, how to solve each question/formula listed on the BCSP examination and provide examples on how and when to utilize them.


Elasticsearch: The Definitive Guide

Elasticsearch: The Definitive Guide

Author: Clinton Gormley

Publisher: "O'Reilly Media, Inc."

Published: 2015-01-23

Total Pages: 659

ISBN-13: 1449358500

DOWNLOAD EBOOK

Whether you need full-text search or real-time analytics of structured data—or both—the Elasticsearch distributed search engine is an ideal way to put your data to work. This practical guide not only shows you how to search, analyze, and explore data with Elasticsearch, but also helps you deal with the complexities of human language, geolocation, and relationships. If you’re a newcomer to both search and distributed systems, you’ll quickly learn how to integrate Elasticsearch into your application. More experienced users will pick up lots of advanced techniques. Throughout the book, you’ll follow a problem-based approach to learn why, when, and how to use Elasticsearch features. Understand how Elasticsearch interprets data in your documents Index and query your data to take advantage of search concepts such as relevance and word proximity Handle human language through the effective use of analyzers and queries Summarize and group data to show overall trends, with aggregations and analytics Use geo-points and geo-shapes—Elasticsearch’s approaches to geolocation Model your data to take advantage of Elasticsearch’s horizontal scalability Learn how to configure and monitor your cluster in production


IT Service Management: ISO/IEC 20000 1:2018 - Introduction and Implementation Guide - Second edition

IT Service Management: ISO/IEC 20000 1:2018 - Introduction and Implementation Guide - Second edition

Author: Dolf van der Haven

Publisher: Van Haren

Published: 2020-10-26

Total Pages: 108

ISBN-13: 9401807035

DOWNLOAD EBOOK

The revised standard for Service Management, ISO/IEC 20000-1: 2018 is the third version of the international standard for service management, replacing the 2011 edition. It provides requirements for the planning, design, transition, delivery and improvement of a Service Management System, which is the coordinated set of policies, processes, organisational structure and people to manage services. This book introduces the ISO/IEC 20000-1 standard as well as providing extensive practical advice on implementing an SMS that conforms to the requirements. It does so by referring to the ISO/IEC 20000-1:2018 documentation toolkit, which is separately available and contains dozens of templates that allow you to provide the documented evidence necessary.


BiSL® Next - A Framework for Business Information Management

BiSL® Next - A Framework for Business Information Management

Author: Brian Johnson

Publisher: Van Haren

Published: 2017-02-20

Total Pages: 193

ISBN-13: 940180611X

DOWNLOAD EBOOK

This book describes the framework of the next generation of Business Information Services Library, BiSL®. BiSL Next is a public domain standard for business information management with guiding principles, good practices and practical templates. It offers guidance for digitally engaged business leaders and those who collaborate with them, with the ultimate goal to improve business performance through better use of information and technology. Twelve elements - four drivers, four domains and four perspectives - are the basis of the guidance in BiSL Next. Target audience of this book are business managers, business information managers, business analysts, CIO’s and IT managers, as well as consultants in this field. While describing the twelve elements, the book offers them insight in the best way to manage, execute and profit from business information management in their enterprise. The book is also the official literature for the BiSL® Next Foundation exam.


CISA Certified Information Systems Auditor Study Guide

CISA Certified Information Systems Auditor Study Guide

Author: David L. Cannon

Publisher: John Wiley & Sons

Published: 2016-03-14

Total Pages: 696

ISBN-13: 1119056241

DOWNLOAD EBOOK

The ultimate CISA prep guide, with practice exams Sybex's CISA: Certified Information Systems Auditor Study Guide, Fourth Edition is the newest edition of industry-leading study guide for the Certified Information System Auditor exam, fully updated to align with the latest ISACA standards and changes in IS auditing. This new edition provides complete guidance toward all content areas, tasks, and knowledge areas of the exam and is illustrated with real-world examples. All CISA terminology has been revised to reflect the most recent interpretations, including 73 definition and nomenclature changes. Each chapter summary highlights the most important topics on which you'll be tested, and review questions help you gauge your understanding of the material. You also get access to electronic flashcards, practice exams, and the Sybex test engine for comprehensively thorough preparation. For those who audit, control, monitor, and assess enterprise IT and business systems, the CISA certification signals knowledge, skills, experience, and credibility that delivers value to a business. This study guide gives you the advantage of detailed explanations from a real-world perspective, so you can go into the exam fully prepared. Discover how much you already know by beginning with an assessment test Understand all content, knowledge, and tasks covered by the CISA exam Get more in-depths explanation and demonstrations with an all-new training video Test your knowledge with the electronic test engine, flashcards, review questions, and more The CISA certification has been a globally accepted standard of achievement among information systems audit, control, and security professionals since 1978. If you're looking to acquire one of the top IS security credentials, CISA is the comprehensive study guide you need.


IT Governance: Policies and Procedures, 2019 Edition

IT Governance: Policies and Procedures, 2019 Edition

Author: Wallace, Webber

Publisher: Wolters Kluwer

Published: 2018-11-16

Total Pages: 1462

ISBN-13: 1543802222

DOWNLOAD EBOOK

IT Governance: Policies & Procedures, 2019 Edition is the premier decision-making reference to help you to devise an information systems policy and procedure program uniquely tailored to the needs of your organization. Not only does it provide extensive sample policies, but this valuable resource gives you the information you need to develop useful and effective policies for your unique environment. IT Governance: Policies & Procedures provides fingertip access to the information you need on: Policy and planning Documentation Systems analysis and design And more! Previous Edition: IT Governance: Policies & Procedures, 2018 Edition ISBN 9781454884316¿


Scrum – A Pocket Guide - 2nd edition

Scrum – A Pocket Guide - 2nd edition

Author: Gunther Verheyen

Publisher: Van Haren

Published: 2019-01-31

Total Pages: 129

ISBN-13: 9401803773

DOWNLOAD EBOOK

This pocket guide to Scrum is the one book for everyone who wants to learn or re-learn about Scrum. The book describes the framework as it was designed and intended, with a strong focus on the purpose to the rules and adding an historical perspective to Scrum and the Agile movement. Several elements that were described in the first edition of Scrum - A Pocket Guide (2013) were later added to the official Scrum Guide. The most noticeable ones are the Scrum Values (2016) and the description of the 3 questions of the Daily Scrum as a good, yet optional practice (2017). As the balance of society keeps shifting from industrial labor to digital work, complexity and unpredictability keep increasing. The need for agility through Scrum increases equally, in and beyond software and product development. This 2nd edition of Scrum - A Pocket Guide offers the clarity and insights on Scrum that many organizations need, today and in the foreseeable future. Scrum – A Pocket Guide is an extraordinarily competent book. It flows with insight, understanding, and perception. This should be the de facto standard handout for all looking for a complete, yet clear overview of Scrum without being bothered by irrelevancies. (Ken Schwaber, Scrum co-creator) The author, Gunther Verheyen, is a seasoned Scrum practitioner (2003). Throughout his standing career as a consultant, Gunther has employed Scrum in diverse circumstances. He was partner to Ken Schwaber and Director of the Professional Scrum series at Scrum.org. He is the founder of Ullizee-Inc and engages with people and organizations as an independent Scrum Caretaker.