ISO27001-2013 assessments without tears : a pocket guide, second edition / Steve G. Watkins.Material type: TextSeries: JSTOR eBooksPublisher: Ely, Cambridgeshire, U.K. : IT Governance Publishing, 2013Edition: 2nd edDescription: 1 online resourceContent type: text Media type: computer Carrier type: online resourceISBN: 9781849285353; 1849285357Subject(s): Data protection -- Standards | Data protection -- EvaluationAdditional physical formats: Print version:: ISO27001:2013 Assessments Without Tears.DDC classification: 005.8/0218 LOC classification: HF5548.37 | .W38 2013Online resources: Click here to view this ebook.
|Item type||Current location||Call number||URL||Status||Date due||Barcode|
|Electronic Book||UT Tyler Online Online||HF5548.37 .W38 2013 (Browse shelf)||https://ezproxy.uttyler.edu/login?url=http://www.jstor.org/stable/10.2307/j.ctt5hh5dk||Available||ocn875480830|
Title from title screen.
Includes bibliographical references.
Cover; Title; Copyright; About The Author; Contents; Introduction; Chapter 1: What Are Assessments?; Chapter 2: Why Information Security?; Chapter 3: What Actually Happens During An Assessment?; Chapter 4: Answering Auditors' Questions; Chapter 5: What Happens When The Auditor Finds Something Wrong?; Chapter 6: Policies; Chapter 7: Further Advice and Assistance; Appendix 1: Definitions of Terms; ITG Resources.
Helpful advice and reassurance about what an assessment involves, this guide is the perfect tool to prepare everybody in your organisation to play a positive part in your ISO27001 assessment.
Author notes provided by Syndetics
Steve is an authority on information security management and ISO 27001 implementation, and is co-author (with Alan Calder) of the definitive compliance guide, IT Governance: An International Guide to Data Security and ISO27001/ISO27002 (now in its sixth edition).
He is Chair of the ISO/IEC 27001 User Group - the UK Chapter of the ISMS International User Group - and is an ISMS Technical Assessor for UKAS, advising on its assessments of certification bodies offering accredited certification. Steve sits on the IST/33 committee responsible for the UK's contributions to the revisions of the ISO 27000 series of standards and on RM/1, the committee responsible for BS 31100 - the British standard for risk management - and for the UK's contributions to ISO 31000.