New Pocket Guides for Information Security
NEWS RELEASE
NEW POCKET BOOKS BREAK DOWN INFOSECURITY COMPLIANCE AND GOVERNANCE INTO MANAGEABLE STEPS
Ely, England, [March 14], 2007 – The steep learning curve that companies face when adopting best practice information security and governance measures is being broken down into more manageable steps through a new series of expert pocket books. IT Governance Limited, the infosecurity knowledge experts, are launching set of 13 guides to explain the key issues around ISO 27001 certification and corporate governance disciplines, with the first three titles available now under the heading of Practical Information Security.
‘ISO 27001 – A Pocket Guide’ is ideal for organisations that are contemplating an information security management system, about to embark on an implementation, or simply wish to raise awareness of infosecurity among their employees. It succinctly covers the basics, including:
· An explanation of information security and how it can be managed using a globally recognised approach
· The factors that need to be considered in designing an information security regime
· What investments might be necessary to deliver a consistent level of assurance and how to gain maximum value from the available budget
· How to pursue and demonstrate compliance with the ISO 27001 standard
The book is written by Steve Watkins, a leading author, educator and consultant on information security management. Priced at £7.95/US$15.73/€11.82 it is available in softcover and e-book formats from http://www.itgovernance.co.uk/products/778.
‘A Dictionary of Information Security Terms, Abbreviations and Acronyms’ is an invaluable resource for people grappling with security terminology for the first time. Rather than a dry technical dictionary, the book is written in an accessible style that enables managers and novices to quickly grasp the meaning of terms such as ‘bluesnarfing’, ‘DDoS’, ‘pharming’ and ‘zombie’. Written by international authorities Alan Calder and Steve Watkins, the Dictionary is priced at £9.95/US$19.68/€14.79 and available in softcover and e-book formats from http://www.itgovernance.co.uk/products/748.
‘ISO 27001 Assessments Without Tears’ provides a helpful primer for organisations preparing to have their infosecurity regime independently assessed. It describes the assessment process, gives guidance on preparation and how to work with the auditor, and, if needed, advises on what to do if the auditor finds fault with any aspect of a system. Written by Steve Watkins, the book is priced at £5.95/US$11.77/€8.84 and available in softcover and e-book formats from http://www.itgovernance.co.uk/products/766.
Further pocket books will be introduced over coming months under the heading of Practical Governance and will address the following topics:
· Information Security Governance
· A Directors’ Guide to the UK Combined Code and Turnbull Report
· Sarbanes-Oxley
· BASEL 2
· Regulatory Compliance
· The Integrated Management System
· IT Governance
· Information Governance
· Project Governance
· Enterprise Risk Management
Alan Calder, chief executive of IT Governance, commented, “As infosecurity and governance become increasingly mainstream topics, so a wider range of professionals are being drawn into their ambit. These pocket books are ideal for people who need a quick overview of the main issues, either to work effectively with colleagues or to identify any areas for more detailed reading.”
FOR FURTHER INFORMATION AND REVIEW COPIES
Marc Cornelius 80:20 PR +44 (0)20 7924 7576
IT Governance Ltd is a leading authority on data security and IT governance for business and the public sector. It is the world’s most comprehensive publisher and distributor of books, tools, information and advice for Governance, Risk Management and Compliance. IT Governance is ‘non-geek’: it approaches IT issues from a non-technology background and talks to management in its own language. Its customer base spans Europe, the Americas, the Middle East and Asia. More information is available at www.itgovernance.co.uk.
Alan Calder is an international authority on information security management. He led the world’s first successful implementation of BS 7799, the information security management standard upon which ISO 27001 is based, and wrote the definitive compliance guide for this standard, ‘IT Governance: A Manager’s Guide to Data Security and BS7799/ISO17799’. The 3rd edition of this book is the basis for the UK Open University’s postgraduate course on Information Security. He is a consultant to companies including Cisco. He regularly blogs on IT security issues at http://alancalder.blogspot.com/.
Steve Watkins is co-author with Alan Calder of ‘IT Governance: A Manager’s Guide to Data Security and BS7799/ISO17799’ and is a senior consultant and trainer for IT Governance. Steve has held posts with various public and private sector organisations, including HM Crown Prosecution Service Inspectorate and London Underground. He has over 17 years' experience of managing integrated management systems, including maintenance of Information Security, Quality, Environmental and Investor in People certifications. As well as being a trained ISO 27001 and ISO 9000 auditor Steve is a trained EFQM Assessor and holds diplomas in safety and financial management. He is deputy chair of the steering committee of the DTI ISO/IEC17799 Users Group and also sits on the management committee of the British Standards Society, where he chairs the Management Systems Special Interest Group.
