ISO27001 (2013) Assessments Without Tears: A Pocket Guide
Book Details
Author(s)Steve Watkins
PublisherIT Governance Publishing
ISBN / ASINB01HGK2Q9Y
ISBN-13978B01HGK2Q96
Sales Rank1,253,530
MarketplaceUnited States 🇺🇸
Description
Updated to reflect the changes in ISO27001:2013, this pocket guide is the ideal way to prepare all staff in an organisation for an ISO27001 audit.
The audit process can be a daunting one as an auditor can direct questions at any employee within your organisation. Written in a clear plain style, this pocket guide offers a tried and tested briefing, and should be issued to staff in advance of the audit to help them prepare for the experience and be well equipped to answer questions when asked.
This pocket book explains what an ISO 27001 assessment is, why organisations bother with them, and what individual staff should do and, perhaps as importantly, not do if an auditor chooses to question them.
The book covers:
•What an assessment is
•Why information security is important
•What happens during an assessment
•What to consider when answering an auditor';s questions
•What happens when an auditor finds something wrong
•Your policies and how to prepare
•Further information: who to ask
This pocket book is the perfect tool to train everybody inside your organisation to play their part in your ISO 27001 assessment.
Contact us if you are looking for the ISO27001:2005 edition.
To hear about new titles and exclusive offers from IT Governance Publishing, sign up and select 'Books' from the New Products options.
The audit process can be a daunting one as an auditor can direct questions at any employee within your organisation. Written in a clear plain style, this pocket guide offers a tried and tested briefing, and should be issued to staff in advance of the audit to help them prepare for the experience and be well equipped to answer questions when asked.
This pocket book explains what an ISO 27001 assessment is, why organisations bother with them, and what individual staff should do and, perhaps as importantly, not do if an auditor chooses to question them.
The book covers:
•What an assessment is
•Why information security is important
•What happens during an assessment
•What to consider when answering an auditor';s questions
•What happens when an auditor finds something wrong
•Your policies and how to prepare
•Further information: who to ask
This pocket book is the perfect tool to train everybody inside your organisation to play their part in your ISO 27001 assessment.
Contact us if you are looking for the ISO27001:2005 edition.
To hear about new titles and exclusive offers from IT Governance Publishing, sign up and select 'Books' from the New Products options.
More Books by Steve Watkins
