Articoli correlati a Guide to the implementation and auditing of ISMS controls...
This guide includes the definitive requirements that auditors must address when certifying organizations to the 2005 edition of BS ISO/IEC 27001:2005 (BS 7799-2:2005), and will provide guidance on the implementation, checking and auditing of the controls. The book provides guidance on the implementation of ISMS control requirements for auditing existing control implementations to help organizations preparing for certification in accordance with ISO/IEC 27001:2005 Information security management systems. Requirements. The contents of this guide include the ISMS control requirements that should be addressed by organizations considering certification according to ISO/IEC 27001:2005. The guide discusses each of the controls of ISO/IEC 27001:2005 in two different viewpoints: Implementation guidance describing what to consider to fulfil the control requirements when implementing the controls from ISO/IEC 27001:2005. This guidance is aligned with ISO/IEC 17799:2005, which gives advice on the implementation of the controls; Auditing guidance describing what to check when examining the implementation of ISO/IEC 27001:2005 controls to ensure that the implementation covers the essential ISMS control requirements. It is important to emphasize that this guide does not cover the implementation or auditing of the ISMS process requirements covered in Guidelines on Requirements and Preparations for ISMS Certification based on ISO/IEC 27001. This is also discussed in more detail in the section, Meeting ISO/IEC 27001 requirements .
Le informazioni nella sezione "Riassunto" possono far riferimento a edizioni diverse di questo titolo.
L'autore:
Ted Humphreys (Chartered Fellow of the BCS CITP, CISM) is Director of XiSEC Consultants Ltd, a UK company providing information security management and risk management consultancy services. He has been an expert in this field for more than 35 years. During this time he has worked around the world for major international companies as well as the DTI, European Commission and the OECD. Ted Humphreys is the editor of BS 7799 Part 1:1999, ISO/IEC 17799:2000, the 1999 and 2002 editions of BS 7799 Part 2 and EA 7/03 the ISMS accreditation guidelines and the Chair of the ISO group responsible for these ISMS standards. He is the founder of the ISMS International User Group and in 2002 was honoured with the Secure Computing Lifetime Achievement Award as the internationally acknowledged author of these ISMS standards and for his noteworthy achievements in shaping the development of information security management best practice. Dr Angelika Plate has been working as an expert in the area of information security for more than 10 years, including with the German Information Security Agency (1993 1998) and now runs the German-based information security consulting company ÆXIS Security Consultants. Angelika Plate is directly involved in ISO activities, and was the editor of two international standards dealing with risk assessment, control selection and risk management. She is also the editor of the revised version of ISO/IEC 7799, which has now been published. Prior to that, she was involved in the revisions of BS 7799 Parts 1 and 2 in the UK and has been supporting and contributing to the development of ISO/IEC 27001. She is also working as technical support for UKAS assessors and is chairing the ISMS IUG Germany, which she founded in 2002.
Le informazioni nella sezione "Su questo libro" possono far riferimento a edizioni diverse di questo titolo.
- EditoreBSI British Standards Institution
- ISBN 10 0580460045
- ISBN 13 9780580460043
- RilegaturaCopertina flessibile
- Numero di pagine120
(nessuna copia disponibile)
Cerca: Inserisci un desiderataSe non trovi il libro che cerchi su AbeBooks possiamo cercarlo per te automaticamente ad ogni aggiornamento del nostro sito. Se il libro è ancora reperibile da qualche parte, lo troveremo!
Inserisci un desiderata