FAQs

What does IT Governance do?

IT Governance Limited is the one-stop-shop for books, tools, training and consultancy on Governance, Risk Management and Compliance. We provide in a single place everything needed to meet today’s technology management and compliance challenges: the most authoritative and helpful books; the most intuitive specialist toolkits and software; access to the widest possible range of best practice training workshops and courses; and specialist consultancy services grounded in a deep understanding of the subject area.

Which topics can you help me with?

We focus on today’s most critical GRC issues, such as information security (including ISO27001, ISO27002 and PCI DSS), IT governance (including CobiT), IT Service Management (including ITIL and ISO20000), business continuity (including BS25999) and project governance (Prince2).

Do you only sell your own products?

No. Our policy is to offer the most useful and practical GRC products available on the market, irrespective of publisher or provider. While these include our own proprietary books, toolkits, software and services, we also offer an extensive range of other books and resources published by many of the world’s most respected authors and organisations.

Why are you experts in this area?

We were founded by Alan Calder, a prolific author of information security and IT governance books, who led the world’s first successful implementation of BS7799, the forerunner to ISO27001. Based upon this experience, Alan co-wrote the definitive compliance guide to the standard, ‘IT Governance: A Manager’s Guide to Data Security and BS7799/ISO17799’. The fourth edition of this is published in May 2008 and is the basis for the UK Open University’s postgraduate course on information security. Alan went on to found IT Governance Limited because, from his own experience, he recognised a great shortage of clear management books and tools addressing the various critical topics concerned with IT governance and information security.

Who do you write for?

We offer books that cater both for experts in information security and for non-technologist readers. Alan Calder’s own books are aimed particularly at board directors and executives who need to understand and oversee IT governance and information security but who seldom have a background in IT.

How can your products and services help me?

We offer everything required to take you from a basic understanding of the issues through to full implementation, compliance and independent certification to best practice standards:

We offer books for the expert and novice on a wide range of GRC topics.
For project managers and their teams, we offer purpose built toolkits for ISO27001, IT governance, PCI DSS and a range of other needs. These include all the books, checklists, prepared policies and other documentation that you need to establish a compliant framework efficiently and with confidence.
To aid project teams in their work, we offer specialist software tools that help streamline or automate vital tasks, such as asset based risk assessments or the ongoing maintenance of Information Security Management Systems (ISMSs).
To be effective in their work, employees need to have the relevant knowledge and skills. We offer a range of our own training courses on information security and IT governance. We also enable you to find the right training course for a range of other subjects, such as ITIL or Prince2 – through our training course booking service we enable you to find and purchase training from third party organisations near you.
For organisations working to become compliant with and certificated to ISO27001, we offer an expert consultancy service. We work alongside your in-house project team to act as ‘project coach’ and equip your people with the skills needed to create and maintain a compliant ISMS.

How up-to-date are your products?

Our products are being continually renewed to keep pace with the latest developments in technology, regulation and compliance. We also operate an online Knowledge Bank which enables subscribers to immediately access the most current information on our website.

Where can I buy your products?

Our books, toolkits and software products can be bought online through our website www.itgovernance.co.uk and shipped to anywhere in the world. We have customers in locations as diverse as the UK, Pakistan, Australia and Guam. For customers in the United States, we operate a dedicated online shop and US distribution service which can be accessed at www.27001.com.

Our training and consultancy services are principally conducted in the United Kingdom, but we are able to provide tailored solutions upon request for international markets.