IT governance :a manager's guide to data security and BS 7799/ISO 17799 /
Calder, Alan, 1957-
IT governance :a manager's guide to data security and BS 7799/ISO 17799 / Alan Calder, Steve Watkins. - 3rd ed. - London ; Sterling, VA : Kogan Page, 2005. - xiv, 368 p. ; 25cm.
Includes bibliographical references (p. [355]-356) and index.
Contents: Introduction: The Information economy -- What is IT governance? -- Information security -- Why is information security necessary?-- The Combined code, the turnbull report and sarbanes-Oxley -- BS 7799 -- Organizing information security -- Information security policy and scope -- The Risk assessment and statement of applicability -- External parties -- Asset management -- Human resources security -- Physical and environmental security -- Equipment security -- Communications and operations management -- Control against malicius software (malware) and back-ups -- Network security management and media handling -- Exchanges of information -- Electronic commerce services -- E-mail and internet use -- Access control -- Network access control -- Operating systems access control -- application access control and teleworking -- Systems acquisition, development and maintenance -- Cryptographic control -- Security in development and support processes -- Monitoring and information security incident management -- Business continuity management -- Compliance -- The BS 7799 audit -- Appendices: Useful websites -- ISO/IEC 17799:2005.
0749444142 (hardback) 0749443944 (pbk.)
2005009332
GBA525788 bnb
013147709 Uk
Computer security.
Data protection.
Business enterprises--Computer networks--Security measures.
QA76.9.A25C342
005.8
IT governance :a manager's guide to data security and BS 7799/ISO 17799 / Alan Calder, Steve Watkins. - 3rd ed. - London ; Sterling, VA : Kogan Page, 2005. - xiv, 368 p. ; 25cm.
Includes bibliographical references (p. [355]-356) and index.
Contents: Introduction: The Information economy -- What is IT governance? -- Information security -- Why is information security necessary?-- The Combined code, the turnbull report and sarbanes-Oxley -- BS 7799 -- Organizing information security -- Information security policy and scope -- The Risk assessment and statement of applicability -- External parties -- Asset management -- Human resources security -- Physical and environmental security -- Equipment security -- Communications and operations management -- Control against malicius software (malware) and back-ups -- Network security management and media handling -- Exchanges of information -- Electronic commerce services -- E-mail and internet use -- Access control -- Network access control -- Operating systems access control -- application access control and teleworking -- Systems acquisition, development and maintenance -- Cryptographic control -- Security in development and support processes -- Monitoring and information security incident management -- Business continuity management -- Compliance -- The BS 7799 audit -- Appendices: Useful websites -- ISO/IEC 17799:2005.
0749444142 (hardback) 0749443944 (pbk.)
2005009332
GBA525788 bnb
013147709 Uk
Computer security.
Data protection.
Business enterprises--Computer networks--Security measures.
QA76.9.A25C342
005.8