Foundations of Information Security based on ISO27001 and ISO27002 – 4th revised edition
- 261 pages
- English
- ePUB (mobile friendly)
- Available on iOS & Android
Foundations of Information Security based on ISO27001 and ISO27002 – 4th revised edition
About This Book
This book is intended for anyone who wants to prepare for the Information Security Foundation based on ISO / IEC 27001 exam of EXIN. All information security concepts in this revised edition are based on the ISO/IEC 27001: 2013 and ISO/IEC 27002: 2022 standards. A realistic case study running throughout the book usefully demonstrates how theory translates into an operating environment. In all these cases, knowledge about information security is important and this book therefore provides insight and background information about the measures that an organization could take to protect information appropriately. Sometimes security measures are enforced by laws and regulations.This practical and easy-to-read book clearly explains the approaches or policy for information security management that most organizations can consider and implement. It covers: The quality requirements an organization may have for informationThe risks associated with these quality requirementsThe countermeasures that are necessary to mitigate these risksHow to ensure business continuity in the event of a disasterWhen and whether to report incidents outside the organization.
Frequently asked questions
Information
Table of contents
- Cover
- Title
- Colophon
- Preface by the authors
- Contents
- 1 Introduction
- 2 Case study: Springbooks – An international bookstore
- 3 Definitions and security concepts
- 4 Context of the organization
- 5 Organizational controls
- 6 People controls
- 7 Physical controls
- 8 Technological controls
- Appendix A Glossary
- Appendix B Overview of family of ISO 27000 standards
- Appendix C About the authors
- Index