IT Governance: An International Guide to Data Security and ISO27001/ISO27002

Faced with constant and fast-evolving threats to information security and with a growing exposure to cyber risk, managers at all levels and in organizations of all sizes need a robust IT governance system. Now in its sixth edition, the bestselling IT Governance provides best-practice guidance for companies looking to protect and enhance their information security management systems and protect themselves against cyber threats. IT Governance has been fully updated to take account of current cyber security and advanced persistent threats and reflects the latest regulatory and technical developments, including the 2013 updates to ISO27001/ISO27002. Changes for this edition include:

Full updates throughout in line with the revised ISO27001 standard and accompanying ISO27002 code of practice for information security controls
Full coverage of changes to data-related regulations in different jurisdictions and advice on compliance
Guidance on the options for continual improvement models and control frameworks made possible by the new standard
New developments in cyber risk and mitigation practices
The latest technological developments that affect IT governance and security
Guidance on the new information security risk assessment process and treatment requirements


Including coverage of key international markets including the UK, North America, the EU and Asia Pacific, IT Governance is the definitive guide to implementing an effective information security management and governance system.