Home   FAQs   New Arrivals   Specials   Pricing & Shipping   Location   Corporate Services   Why Choose Bookware?  
Call our store: 9955 5567 (from within Sydney) or 1800 734 567 (from outside Sydney)
 View Cart   Check Out   
Browse by Subject
 TAFE Accounting
 TAFE I.T./Computing
 TAFE - Other
 Windows 8
 Adobe CS6
 CCNA 2012
 CCNP 2012
 Web Design
 Project Management
 Mobile Devices
 Windows Server 2012
 SQL Server 2012
Economics and Business
 Business Information Systems
 Human Resources

IT Governance: A Manager's Guide to Data Security and BS 7799/ ISO 17799 (3rd Edition)

by: Alan Calder, Steve Watkins

On-line Price: $72.00 (includes GST)

Hardcover package 352

75%Off Retail Price

You save: $218.00

CLEARANCE Item - Special discount - limited stock!
N.Sydney : In Stock

Retail Price: $290.00

Publisher: Kogan Page Ltd,30.06.05

Category: IT GOVERNANCE Level: B/I/A

ISBN: 0749444142
ISBN13: 9780749444143

Add to Shopping Cart

The development of IT governance - which recognizes the convergence between business and IT management - makes it essential for managers at all levels and in organizations of all sizes to understand how best to deal with information security risks. In addition, the Turnbull guidance on company risk management (together with laws and regulations throughout the OECD) provides company directors with a legal responsibility to act on computer and information security.

This new edition of a unique handbook is fully updated for the latest regulatory and technological developments. Containing the 2005 revisions to BS7799 and ISO17799, it guides business managers through the issues involved in achieving ISO certification in Information Security Management and covers all aspects of data security.

Written by business managers for business managers, it is an essential resource to be used in organizations of all shapes and sizes, and particularly those with well-developed internal IT systems and those focussed on e-commerce.

Table of Contents
Why is information security necessary?
The Combined Code and the Turnbull Report.
Information security management.
Information security policy and scope.
The risk assessment and statement applicability.
Security of third party access and outsourcing.
Asset classification and control.
Personnel security.
Physical and environmental security.
Equipment security.
General security controls.
Communications and operations management.
Controls against malicious software.
Housekeeping, network management and media handling.
Exchanges of information and software.
E-mail and Internet use.
Access control.
Network access control.
Operating system access control.
Application access control.
Mobile computing and teleworking.
Systems development and maintenance.
Cryptographic controls.
Security in development and support process.
Business continuity management.
The BS7799 audit.
Return to top

Praise and Reviews
"For companies that have identified IT governance as a key business risk, this book provides a comprehensive guide to actions that should be taken."
- Nigel Turnbull, Chairman, Lasmo plc, author of the Turnbull Report Internal Guidance for Directors on the Combined Code

"Addresses how managers should comply with best practice on the security, confidentiality and integrity of data stored on IT systems."
- The Times

"Written for directors and senior managers... it's a clear and concise working document to help bolster information security practices."
- Business Continuity

"Should be read by every computer professional with responsibility for security."
- IMIS Journal

"For complete coverage of the standard, this book is unparalleled, and that's why we have chosen it as the basis for the Open University's new Information Security Management Course."
- Dr Jon G Hall, Lecturer in Information Security, Open University, UK

"Demonstrates that whilst business is moving towards improving its own mechanisms to control IT, adequate security in the future depends on senior management monitoring and controlling their security, minimizing the residual business risks and ensuring that security continues to fulfill corporate, customer and legal requirements."
- Dr Stephen Hill, Chantry Vellacott DFK

"An excellent piece of work which I regard as an essential reference work for information security professionals in these days of increased focus on compliance and standards."
- Milo Doyle, Head of Information Security, EBS Building Society

Return to top

About the Authors

Alan Calder
Alan Calder is CEO of Wide Learning, a supplier of e-learning, and was previously CEO of Focus Central London and, before that, of Business Link London City Partners (BLLCP). He was also a member of the DTI's Information Age Competitiveness Working Group. He is a non-executive director of DNV Certification Services Ltd, a company that certifies compliance with international standards including BS 7799. He is also a Director of IT Governance Ltd, which provides information security services through its web site at www.itgovernance.co.uk

Steve Watkins
Steve Watkins is Corporate Services Manager of HMCPSI and was Head of Quality and Operations at Focus Central London and was, before that, Quality Manager at Business Link.

Alan Calder and Steve Watkins were responsible for one of the first companies (BLLCP) to achieve BS 7799 registration when the standard was first promulgated in 1996. They have aided other organizations since then to implement effective information security management systems, and have been involved in the development of both the accredited certification scheme and related training standards