Third edition of Information Security Risk Management for ISO 27001/ISO 27002 now available from IT Governance


IT Governance, the leading provider of cyber risk and privacy management solutions and sister company to IT Governance Publishing is pleased to announce the release of a new edition of Information Security Risk Management for ISO 27001/ISO 27002.

Written by IT Governance founder and Executive Chairman Alan Calder and GRC International Group Executive Director Steve Watkins, the book provides practical advice on implementing and developing an ISO 27001- and ISO 27002-compliant information security and risk management system.

Calder said: “Recent changes within the privacy landscape such as the GDPR, the CCPA and ISO 27701 mean that organisations need to reassess their risk and manage it based on compliance requirements and the current threat environment.

“GRC International Group and its subsidiaries are committed to further contributing to and remaining at the leading edge of information security standards and best-practice risk assessment. This book provides detailed, practical guidance on how to develop and implement a risk assessment in line with your ISO 27001 compliance requirements, which can help you meet your GDPR and CCPA compliance requirements and minimise the risk of hefty fines.”

This third edition covers key topics such as risk assessment methodologies, risk scales, threats and vulnerabilities, risk treatment and the selection of controls, producing the Statement of Applicability, and roles and responsibilities. It also provides guidance on selecting risk assessment software that helps you protect your information assets effectively and manage risk in a systematic way.

IT Governance Publishing produces high-quality publications about best-practice frameworks, compliance and technical subjects, including information security, privacy management, IT governance, IT service management and project management. The books are written by industry experts and real-world information security and privacy practitioners to help professionals plan and deliver successful implementation projects.

To find out more about the books available via IT Governance, please visit the website, email or call +44 (0)333 666 9000.

This website uses cookies. View our cookie policy
WIN £100