It Governance Publishing imprint: 127 books

The intentions of the cyberterrorist, the cybercriminal, the cyberactivist and the state-sponsored hacker are not the same. They can all cause serious problems for your organisation, however, including information theft, disruption of normal operations and undermining your reputation or credibility....

This practical guide recognises that every organisation functions differently, has different goals, and faces different challenges. It will give you the tools you need to understand the factors influencing your organisation, to identify how your business must respond, and to implement the necessary changes. Your organisation will survive and become more efficient.

This authoritative pocket guide is designed to help information professionals, particularly in the public sector, understand the requirements of both Acts together with the ways in which they intersect. The guide looks at the restrictions on disclosure under the Freedom of Information Act, including...

Written specifically to help cost-conscious, environmentally-minded organisations, this guide identifies practical and straightforward ways to deploy green initiatives that will directly benefit your organisations bottom line.

Written by an experienced practitioner and trainer, this step-by-step guide breaks down the PRINCE2® methodology into bite-size chunks, giving clear explanations and practical illustrations in each section. It shows you how to  effectively apply the principles, themes and processes of PRINCE2® to your projects.

This pocket guide addresses the scope of risks involved in a modern IT system, and outlines strategies for working through the process of putting risk management at the heart of your corporate culture. 

Software Life Cycle Management Standards details each part of ISO/IEC 19770 and shows you how to apply it to your business. David Wright calls on his vast experience to explain how the Standard applies to the entire software life cycle, not just the software asset management aspects. His informative...

This book will help you develop your management skills. It is designed to assist you in understanding the characteristics of a high-performance manager, to help you assess where your strengths and development areas lie as a manager and to create a plan of action for realising your management potential.

This book shows you how to use ISO/IEC 27001 to secure applications and how to tackle this issue as part of the development and roll out of an Information Security Management System (‘ISMS’) that conforms with ISO/IEC 27001.

Penetration Testing: Protecting networks and systems is a preparation guide for the CPTE examination. It describes the range of techniques employed by professional pen testers, and also includes advice on the preparation and delivery of the test report. The author's in-the-field experiences,...

This pocket guide, based on best practice guidelines, looks at what you can do to ensure your employees fulfil their obligations and turn up as required. It then gets to grips with the question of how your organisation should handle unplanned absences before and when they arise. 

This pocket guide uses case studies to illustrate the possible security breach scenarios that an organisation can face. It sets out a sensible, realistic assessment of the actual costs of a data or information breach and explains how managers can determine the business damage caused.

Provides an authoritative guide to authorization for persons with knowledge of information systems and/or information systems security, but not necessarily the same level of expertise with certification and accreditation standards and best practices; it points to references for further knowledge....

Drawing on international best practice, including ISO/IEC 27005, NIST SP800-30 and BS7799-3, the book explains in practical detail how to carry out an information security risk assessment. It covers key topics, such as risk scales, threats and vulnerabilities, selection of controls, and roles and responsibilities, and includes advice on choosing risk assessment software.