You may have to Search all our reviewed books and magazines, click the sign up button below to create a free account.
For many companies, their intellectual property can often be more valuable than their physical assets. Having an effective IT governance strategy in place can protect this intellectual property, reducing the risk of theft and infringement. Data protection, privacy and breach regulations, computer misuse around investigatory powers are part of a complex and often competing range of requirements to which directors must respond. There is increasingly the need for an overarching information security framework that can provide context and coherence to compliance activity worldwide. IT Governance is a key resource for forward-thinking managers and executives at all levels, enabling them to underst...
Studies have shown that a company's share price is often linked to how well governed the company is, providing board members with a strong financial incentive to maintain good corporate governance practices. Yet what may constitute good governance will vary across different countries and companies, and there is no 'one size fits all' model of corporate governance. Corporate Governance will help you to become familiar with the principles and practice of good governance appropriate to your company, enabling you to uphold those standards that will improve your corporate reputation while providing reassurance to market regulators. For directors of companies of all shapes and sizes, this is essential reading, and will answer all your questions on what good corporate governance means for you, your company's reputation and its share price.
This pocket guide provides an introduction on how to approach the complex subject of IT governance. It describes the drivers for IT governance: why it matters, and the relationships between IT governance, risk management, information risk, project governance and compliance risk.
Aligned with the latest iteration of the Standard – ISO 27001:2013 – this new edition of the original no-nonsense guide to successful ISO 27001 certification is ideal for anyone tackling ISO 27001 for the first time, and covers each element of the ISO 27001 project in simple, non-technical language
We live in a world where technology and vast quantities of data play a considerable role in everyday life, both personal and professional. For the foreseeable future (and perhaps beyond), the growth and prominence of data in business shows no signs of slowing down, even if the technology in question will likely change in ways perhaps unimaginable today. Naturally, all this innovation brings huge opportunities and benefits to organisations and people alike. However, these come at more than just a financial cost. In the world as we know it, you can be attacked both physically and virtually. For today’s organisations, which rely so heavily on technology – particularly the Internet – to do...
Drawing on international best practice, including ISO/IEC 27005, NIST SP800-30 and BS7799-3, the book explains in practical detail how to carry out an information security risk assessment. It covers key topics, such as risk scales, threats and vulnerabilities, selection of controls, and roles and responsibilities, and includes advice on choosing risk assessment software.
Step-by-step guidance on successful ISO 27001 implementation from an industry leader ISO 27001 is the international standard that sets out the requirements of an information security management system (ISMS) - a holistic approach to information security that encompasses people, processes and technology. Accredited certification to the Standard is recognised worldwide as the hallmark of best-practice information security management. Achieving and maintaining accredited certification to ISO 27001 can be a complicated undertaking, however, especially for implementers who are new to the Standard. Alan Calder knows ISO 27001 inside out: the founder and executive chairman of IT Governance, he led ...
Organisations will need to take action to implement effective compliance measures. Failure to comply could result in fines of up to 4% of annual global turnover or 20 million. This guide is essential reading for organisations wanting an easy to follow overview of the new regulation and the compliance obligations for handling data of EU citizens.