A01=Timothy P. Layton
Access Control
Author_Timothy P. Layton
awareness
business continuity strategies
Business Process
Category=UBL
Category=UR
Category=URY
Category=UTF
Category=UY
class
compliance management systems
control
Control Class
CRYPTOGRAPHIC CONTROLS
cybersecurity risk modeling
eq_bestseller
eq_computing
eq_isMigrated=1
eq_isMigrated=2
eq_nobargain
eq_non-fiction
facilities
indicator
Information Processing Facilities
Information Security
Information Security Assessment
Information Security Awareness
information security control objectives
Information Security Controls
Information Security Incident
Information Security Incident Management
Information Security Management
Information Security Policy
Information Security Policy Document
Information Security Professionals
Information Security Program
Information Security Responsibilities
Information Security Risk
Information Security Risk Assessment
Information Security Risk Assessment Processes
ISO 27002 implementation
key
Key Risk Indicators
management
organizational asset protection
physical security controls
policy
processing
REPORTING INFORMATION SECURITY EVENTS
risk
Risk Assessment
Security Clause
Technical Key Questions
Product details
- ISBN 9780849370878
- Weight: 650g
- Dimensions: 156 x 234mm
- Publication Date: 20 Jul 2006
- Publisher: Taylor & Francis Ltd
- Publication City/Country: GB
- Product Form: Hardback
Secure
checkout
Fast Shipping
Easy returns
Organizations rely on digital information today more than ever before. Unfortunately, that information is equally sought after by criminals. New security standards and regulations are being implemented to deal with these threats, but they are very broad and organizations require focused guidance to adapt the guidelines to their specific needs.
Fortunately, Information Security: Design, Implementation, Measurement, and Compliance outlines a complete roadmap to successful adaptation and implementation of a security program based on the ISO/IEC 17799:2005 (27002) Code of Practice for Information Security Management. The book first describes a risk assessment model, a detailed risk assessment methodology, and an information security evaluation process. Upon this foundation, the author presents a proposed security baseline for all organizations, an executive summary of the ISO/IEC 17799 standard, and a gap analysis exposing the differences between the recently rescinded version and the newly released version of the standard. Finally, he devotes individual chapters to each of the 11 control areas defined in the standard, covering systematically the 133 controls within the 39 control objectives.
Tim Layton's Information Security is a practical tool to help you understand the ISO/IEC 17799 standard and apply its principles within your organization's unique context.
