Skip to Main Content
Important information: All physical goods sent to the EU will be liable for local tax payments. Read more
Books Information Security & ISO27001 ISO27001:2013 Assessments Without Tears
ISO27001:2013 Assessments Without Tears

ISO27001:2013 Assessments Without Tears

Steve Watkins (Author)

Details

SKU: 766
Format: Softcover
ISBN13: 9781849285346
BIC: COMPUTER SECURITY
BISAC: COMPUTERS / Security / General
Pages: 36
Published: 29 Oct 2013
Availability: In Stock

Buying option(s)

Description

Updated to reflect the changes in ISO27001:2013, this pocket guide is the ideal way to prepare all staff in an organisation for an ISO27001 audit.

The audit process can be a daunting one as an auditor can direct questions at any employee within your organisation. Written in a clear plain style, this pocket guide offers a tried and tested briefing, and should be issued to staff in advance of the audit to help them prepare for the experience and be well equipped to answer questions when asked.

Providing a handy reference guide, the book explains what an ISO 27001 assessment is, why organisations bother with them, and what individual staff should do and, perhaps as importantly, not do if an auditor chooses to question them.

The perfect tool to train everybody inside your organisation to play their part in your ISO 27001 assessment - order copies for all your staff today. 

 

Authors

About the author

Steve is an authority on information security management and ISO 27001 implementation, and is co-author (with Alan Calder) of the definitive compliance guide, IT Governance: An International Guide to Data Security and ISO27001/ISO27002 (now in its sixth edition).

He is Chair of the ISO/IEC 27001 User Group – the UK Chapter of the ISMS International User Group – and is an ISMS Technical Assessor for UKAS, advising on its assessments of certification bodies offering accredited certification. Steve sits on the IST/33 committee responsible for the UK’s contributions to the revisions of the ISO 27000 series of standards and on RM/1, the committee responsible for BS 31100 – the British standard for risk management – and for the UK’s contributions to ISO 31000.

Reviews

Customer Reviews

(Only registered customers can rate)
Table of contents

1: What Are Assessments?

2: Why Information Security?

3: What Actually Happens During an Assessment?

4: Answering Auditors' Questions

5: What Happens When The Auditor Finds Something Wrong?

6: Policies

7: Further Advice and Assistance

Appendix 1: Definitions of Terms

Loading...