๐”– Scriptorium
โœฆ   LIBER   โœฆ
๐Ÿ“

Implementing An Information Security Management System: Security Management Based On ISO 27001 Guidelines

โœ Scribed by Abhishek Chopra, Mukund Chaudhary

Publisher
Apress
Year
2020
Tongue
English
Leaves
284
Category
Library
โฌ‡  Acquire This Volume

No coin nor oath required. For personal study only.

โœฆ Synopsis

Discover the simple steps to implementing information security standards using ISO 27001, the most popular information security standard across the world. Youโ€™ll see how it offers best practices to be followed, including the roles of all the stakeholders at the time of security framework implementation, post-implementation, and during monitoring of the implemented controls. Implementing an Information Security Management System provides implementation guidelines for ISO 27001:2013 to protect your information assets and ensure a safer enterprise environment. This book is a step-by-step guide on implementing secure ISMS for your organization. It will change the way you interpret and implement information security in your work area or organization.

โœฆ Table of Contents

Front Matter ....Pages i-xvii
The Need for Information Security (Abhishek Chopra, Mukund Chaudhary)....Pages 1-20
Assessing Needs and Scope (Abhishek Chopra, Mukund Chaudhary)....Pages 21-48
Project Kick-Off (Abhishek Chopra, Mukund Chaudhary)....Pages 49-58
Initial Risk Assessment (Abhishek Chopra, Mukund Chaudhary)....Pages 59-76
Risk Management Approach (Abhishek Chopra, Mukund Chaudhary)....Pages 77-102
Execution (Abhishek Chopra, Mukund Chaudhary)....Pages 103-219
Internal Audit (Abhishek Chopra, Mukund Chaudhary)....Pages 221-235
Management Review (Abhishek Chopra, Mukund Chaudhary)....Pages 237-245
External Audit (Abhishek Chopra, Mukund Chaudhary)....Pages 247-258
Continual Improvement (Abhishek Chopra, Mukund Chaudhary)....Pages 259-265
Back Matter ....Pages 267-274

โœฆ Subjects

Security

๐Ÿ“œ SIMILAR VOLUMES

ISO/IEC 27003:2010, Information technolo
๐Ÿ“ ISO/IEC 27003:2010, Information technology - Security techniques - Information security management system implementation guidance
โœ ISO/IEC/JTC 1/SC 27 ๐Ÿ“‚ Library ๐Ÿ“… 2010 ๐Ÿ› Multiple. Distributed through American National St ๐ŸŒ English

ISO/IEC 27003:2010 focuses on the critical aspects needed for successful design and implementation of an Information Security Management System (ISMS) in accordance with ISO/IEC 27001:2005. It describes the process of ISMS specification and design from inception to the production of implementation p

ISO/IEC 27007:2011 Information technolog
๐Ÿ“ ISO/IEC 27007:2011 Information technology -- Security techniques -- Guidelines for information security management systems auditing
๐Ÿ“‚ Library ๐Ÿ“… 2011 ๐ŸŒ English

ISO/IEC 27007:2011 provides guidance on managing an information security management system (ISMS) audit programme, on conducting the audits, and on the competence of ISMS auditors, in addition to the guidance contained in ISO 19011. ISO/IEC 27007:2011 is applicable to those needing to understand

ISO/IEC 27001:2022: Information security
๐Ÿ“ ISO/IEC 27001:2022: Information security, cybersecurity and privacy protection โ€” Information security management systems โ€” Requirements
โœ ISO ๐Ÿ“‚ Library ๐Ÿ“… 2022 ๐Ÿ› ISO ๐ŸŒ English

Information security, cybersecurity and privacy protection โ€” Information security management systems โ€” Requirements This document specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the or