Gift Guide

International IT Governance: An Executive Guide to ISO 17799/ISO 27001

Paperback (Print)
Buy New
Buy New from
Used and New from Other Sellers
Used and New from Other Sellers
from $4.43
Usually ships in 1-2 business days
(Save 94%)
Other sellers (Paperback)
  • All (5) from $4.43   
  • New (2) from $71.58   
  • Used (3) from $4.43   


An essential resource for business managers at any-sized organization, this book provides the current best practice in managing data and information risks as companies face increasingly complex and dangerous threats to information security. The development of IT Governance, which recognizes the convergence between business and IT management, makes it essential for managers at all levels to understand how best to deal with information security risks. This text explores new legislation, including the launch of ISO/IEC 27001, which defines a single, global standard of information security. Includes access to a website that provides templates designed for implementation within any organization.

An essential resource for business managers at any-sized organization, this book provides the current best practice in managing data and information risks as companies face increasingly complex and dangerous threats to information security.

Read More Show Less

Product Details

  • ISBN-13: 9780749447489
  • Publisher: Kogan Page, Ltd.
  • Publication date: 8/31/2006
  • Series: Kogan Page Series
  • Edition description: New Edition
  • Pages: 366
  • Product dimensions: 6.26 (w) x 9.22 (h) x 0.94 (d)

Meet the Author

Alan Calder is a founder-director of IT Governance Ltd. He is the author of Corporate Governance, IT Governance, and International IT Governance (all Kogan Page).

Steve Watkins is a recognized expert in the field of management system standards. He has authored several books on the topic and provides training and consulting services in this area.

Read More Show Less

Table of Contents

1 Why is information security necessary? 9
2 Sarbanes-Oxley and regulatory compliance 23
3 Information security standards 31
4 Organizing information security 45
5 Information security policy and scope 63
6 The risk assessment and statement of applicability 73
7 External parties 95
8 Asset management 109
9 Human resources security 127
10 Physical and environmental security 145
11 Equipment security 157
12 Communications and operations management 167
13 Controls against malicious software (malware) and back-ups 181
14 Network security management and media handling 195
15 Exchanges of information 203
16 Electronic commerce services 211
17 E-mail and Internet use 223
18 Access control 231
19 Network access control 249
20 Operating system access control 261
21 Application access control and teleworking 267
22 Systems acquisition, development and maintenance 275
23 Cryptographic controls 281
24 Security in development and support processes 289
25 Monitoring and information security incident management 299
26 Business continuity management 315
27 Compliance 327
28 The ISO/IEC 27001 audit 345
Read More Show Less

Customer Reviews

Be the first to write a review
( 0 )
Rating Distribution

5 Star


4 Star


3 Star


2 Star


1 Star


Your Rating:

Your Name: Create a Pen Name or

Barnes & Review Rules

Our reader reviews allow you to share your comments on titles you liked, or didn't, with others. By submitting an online review, you are representing to Barnes & that all information contained in your review is original and accurate in all respects, and that the submission of such content by you and the posting of such content by Barnes & does not and will not violate the rights of any third party. Please follow the rules below to help ensure that your review can be posted.

Reviews by Our Customers Under the Age of 13

We highly value and respect everyone's opinion concerning the titles we offer. However, we cannot allow persons under the age of 13 to have accounts at or to post customer reviews. Please see our Terms of Use for more details.

What to exclude from your review:

Please do not write about reviews, commentary, or information posted on the product page. If you see any errors in the information on the product page, please send us an email.

Reviews should not contain any of the following:

  • - HTML tags, profanity, obscenities, vulgarities, or comments that defame anyone
  • - Time-sensitive information such as tour dates, signings, lectures, etc.
  • - Single-word reviews. Other people will read your review to discover why you liked or didn't like the title. Be descriptive.
  • - Comments focusing on the author or that may ruin the ending for others
  • - Phone numbers, addresses, URLs
  • - Pricing and availability information or alternative ordering information
  • - Advertisements or commercial solicitation


  • - By submitting a review, you grant to Barnes & and its sublicensees the royalty-free, perpetual, irrevocable right and license to use the review in accordance with the Barnes & Terms of Use.
  • - Barnes & reserves the right not to post any review -- particularly those that do not follow the terms and conditions of these Rules. Barnes & also reserves the right to remove any review at any time without notice.
  • - See Terms of Use for other conditions and disclaimers.
Search for Products You'd Like to Recommend

Recommend other products that relate to your review. Just search for them below and share!

Create a Pen Name

Your Pen Name is your unique identity on It will appear on the reviews you write and other website activities. Your Pen Name cannot be edited, changed or deleted once submitted.

Your Pen Name can be any combination of alphanumeric characters (plus - and _), and must be at least two characters long.

Continue Anonymously

    If you find inappropriate content, please report it to Barnes & Noble
    Why is this product inappropriate?
    Comments (optional)