The case for ISO27001 : 2013 / Alan Calder.

Format:

Book

Author/Creator:

Calder, Alan, author.

Language:

English

Subjects (All):

Business enterprises--Computer networks--Security measures.

Business enterprises.

Confidential business information.

Computer security--Management--Standards.

Computer security.

Physical Description:

1 online resource (111 p.)

Edition:

Second edition.

Place of Publication:

Cambridgeshire, England : IT Governance Publishing, 2013.

Language Note:

English

Summary:

This friendly guide, updated to reflect ISO27001:2013, presents the compelling business case for implementing ISO27001 in order to protect your information assets. This makes it ideal reading for anyone unfamiliar with the many benefits of the standard, and as a supporting document for an ISO27001 project proposal.

Contents:

Cover

Title

Copyright

About the Author

Acknowledgement

Contents

Introduction

Chapter 1: Information Economy, Intellectual Capital

Executive summary

The information economy

Intellectual capital

ISO27001

Chapter 2: Information, IT and Competitiveness

Academic research

Competitive environment

Chapter 3: Information Threats

Threats

Attack categories

Chapter 4: Insecurity Impacts

Types of impact

Chapter 5: 'Traditional' Threats

Viruses and hackers

Spam

Commercial espionage

Insider threats

Fraud

Staff

Systems failures

Chapter 6: Information Risk in Large Organisations

Threats to larger organisations

Vulnerabilities in larger organisations

Impacts on larger organisations

Data protection and privacy regulation in larger organisations

Chapter 7: Organised Crime

Impacts of organised crime

Chapter 8: Terrorism

Cyber-capabilities

Chapter 9: Evolving Threat Environment

Key trends

Chapter 10: Regulatory Compliance

Executive Summary

The regulatory conundrum

Chapter 11: Data Protection and Privacy

Privacy and data protection

OECD Guidelines

EU Regulation

UK Regulation

US Regulation

APEC regulation

Chapter 12: Anti-Spam Legislation

Regulation of electronic marketing

Chapter 13: Computer Misuse Legislation

Convention on cyber crime

Chapter 14: Human Rights

Chapter 15: Record Retention and Destruction.

Executive summary

Records

Chapter 16: Information Security Governance

What is 'information security'?

Information security is a Board responsibility

Governance and risk management

Corporate governance codes

Information risk

Governance failure

Chapter 17: Benefits of an ISO27001 ISMS

A structured information security management system

Benefits of a structured information security management system

Benefits of external certification ('registration') to ISO27001

Chapter 18: ISO27001 in the Public Sector

UK public sector organisations

Freedom of information legislation

Board issues in the public sector

Chapter 19: Is ISO27001 for you?

Do you have information that you rely on or which needs to be kept confidential?

Do you collect personal information (e.g. from customers or employees)?

Does your business rely on information technology for its daily activities?

Do your customers, suppliers or partners need confidence in your information handling and privacy protection measures?

Can you afford reputational damage, commercial and punitive losses, business interruption and loss or corruption of confidential information?

Is ISO27001 the answer?

Chapter 20: How do you go about ISO27001?

Preparation

Initial planning

Implementation

Chapter 21: Selection of a Certification Body

Appendix: ISO27001 - Past, Present and Future

ISO/IEC 17799

Links to other standards and regulatory frameworks

Useful Websites

ISO27001 certification organisations

Governance

Information security

ITG Resources

Other Websites

Toolkits

Training Services

Professional Services and Consultancy

Publishing Services

Newsletter.

Notes:

Bibliographic Level Mode of Issuance: Monograph

Description based on online resource; title from PDF title page (ebrary, viewed August 14, 2014).

Description based on publisher supplied metadata and other sources.

ISBN:

1-84928-531-4

OCLC:

876049154