Authored by an internationally recognized expert in the field, this timely book provides you with an authoritative and clear guide to the ISO/IEC 27000 security standards and their implementation. The book addresses all the critical information security management issues that you need to understand to help protect your business's valuable assets, including dealing with business risks and governance and compliance. Moreover, you find practical information on standard accreditation and certification. From information security management system (ISMS) design and deployment, to system monitoring, reviewing and updating, this invaluable book is your one-stop resource on the ISO/IEC 27000 series of standards.
Introduction. Business and the Information Society. Information Security. The ISO/IEC 27000 Series of Standards. ISMS Design. Implementing and Deploying the ISMS. Monitoring and Reviewing the ISMS. Keeping the ISMS Up to Date. Accreditation and Certification. ISMS Business Case Studies. ISMS Checklists and Benchmarking.;
-
Edward Humphreys
Edward Humphreys is a visiting professor across Europe and Asia for short courses in ISMS, cyber resilience, risk management and risk psychology. He is the convener of the ISO/IEC JTC 1/SC 27 responsible for the development and maintenance of the family of ISO/IEC 27001 ISMS standards.