Product Description
by Behzad Saei (Author), Ben Pournader (Author)
This book offers comprehensive guidance on implementing and maintaining an IT Governance Program and an Information Security Management System (ISMS) in line with the latest version of ISO 27xxx family of international standards, ISO/IEC 27001:2022, ISO/IEC 27000:2018 and ISO/IEC 27002:2022, including the 2024 amendment of the ISO 27001 standard. Serving as an essential overview, it covers the formal requirements for establishing, maintaining, and monitoring an ISMS, along with best-practice recommendations for its successful implementation.
In this book, key topics such as risk assessment, asset management, security controls, supplier relationships, audit, compliance, and other critical aspects of an ISMS are thoroughly explored. Whether you're aiming for certification by an accredited body or simply looking to strengthen your information security practices, this guide is designed for all levels of expertise-from business leaders and risk managers to information security managers, lead implementers, compliance managers, and consultants. The book provides detailed explanations of each requirement, ensuring a deep understanding of the standards and their application.
Additionally, this resource is invaluable for ISO 27001 auditors, helping them assess whether an ISMS meets all necessary requirements and is effectively implemented. By focusing on the core components of an ISMS and recommended controls, this book equips you with the knowledge to build a robust and resilient information security program.
Secure your organization's future by getting your copy of this book today, and take the first step toward a more secure and resilient digital environment.
