IT governance :data security & BS 7799/ISO 17799 : a manager's guide to effective information security. /
Calder, Alan, 1957-
IT governance :data security & BS 7799/ISO 17799 : a manager's guide to effective information security. / Alan Calder, Steve Watkins. - London : Kogan Page, 2002. - xi, 324 p. ; 24 cm.
Includes bibliographical references and index.
Contents: Why is information security necessary? -- The Combined code and the turnbull report -- BS 7799 -- Information security management -- Information security and policy scope -- The Risk assessment and statement of applicability -- Security of third party access and outsourcing -- Asset clssification and control -- Personnel security -- Physical and environmental security -- Equipment security -- General security controls -- Communications and operations management -- Controls against malicious software (malware) -- Housekeeping, network management and media handling -- Exchanges of information and software -- E-mail and Internet use -- Access control -- Network access control -- Operating system access control -- Application access control -- Mobile computing and teleworking -- Systems development and maintenance -- Cryptographic controls -- Security in development and support processes -- Business continuity management -- Compliance -- The BS 7799 audit -- Appendices: I: Useful websites -- II: BS 7799 - 2:2002 -- III: Further reading.
0749438452
2002483754
Computer security.
Data protection.
Business enterprises--Computer networks--Security measures.
QA76.9.A25C343
658.4/78
IT governance :data security & BS 7799/ISO 17799 : a manager's guide to effective information security. / Alan Calder, Steve Watkins. - London : Kogan Page, 2002. - xi, 324 p. ; 24 cm.
Includes bibliographical references and index.
Contents: Why is information security necessary? -- The Combined code and the turnbull report -- BS 7799 -- Information security management -- Information security and policy scope -- The Risk assessment and statement of applicability -- Security of third party access and outsourcing -- Asset clssification and control -- Personnel security -- Physical and environmental security -- Equipment security -- General security controls -- Communications and operations management -- Controls against malicious software (malware) -- Housekeeping, network management and media handling -- Exchanges of information and software -- E-mail and Internet use -- Access control -- Network access control -- Operating system access control -- Application access control -- Mobile computing and teleworking -- Systems development and maintenance -- Cryptographic controls -- Security in development and support processes -- Business continuity management -- Compliance -- The BS 7799 audit -- Appendices: I: Useful websites -- II: BS 7799 - 2:2002 -- III: Further reading.
0749438452
2002483754
Computer security.
Data protection.
Business enterprises--Computer networks--Security measures.
QA76.9.A25C343
658.4/78