An International Guide to Data Security and ISO27001/ISO27002 | IT Governance UK

Now in its seventh edition, this comprehensive book gives guidance on implementing effective information security management. It also outlines international best practices for IT governance for organizations of all sizes and sectors, and demonstrates how to: Protect and enhance your organization with an ISO 27001-compliant ISMS (information security management system); Design, develop, and implement a robust governance system that covers all aspects of data protection and information security; and Defend your organization against advanced, persistent cyber threats. This updated edition reflects changes to international legislation, including the GDPR (General Data Protection Regulation), and updates to BS 7799-3 and the ISO/IEC 27000 family. It also covers key topics such as risk assessment, asset management, controls, security, supplier relationships, and compliance.