Nine Steps to Success - An ISO 27001 Implementation Overview, Third edition

Nine Steps to Success: an ISO 27001 Implementation Overview, Second Edition
  • If you're implementing an information security management system (ISMS) aligned with ISO 27001, this accessible overview of the Standard will explain the nine steps you need to take to significantly increase your chances of achieving certification.
  • It covers every aspect of implementing ISO 27001, and reflects the methodology used by IT Governance’s consultants in hundreds of successful implementation projects around the world.
  • New edition, completely revised for 2016.
Ready to order
Sub Total: 0,00 € (EUR)
CHECKOUT
 

American Express is only available to customers paying in Euros or NOK. We do not yet accept American express for Kuna.

Other payment options available

 

Step-by-step guidance on successful ISO 27001 implementation from an industry leader

ISO 27001 is the international standard that sets out the requirements of an information security management system (ISMS) – a holistic approach to information security that encompasses people, processes and technology. Accredited certification to the Standard is recognised worldwide as the hallmark of best-practice information security management.

Achieving and maintaining accredited certification to ISO 27001 can be a complicated undertaking, however, especially for implementers who are new to the Standard.

Alan Calder knows ISO 27001 inside out: the founder and executive chairman of IT Governance, he led the implementation of the management system that achieved the world’s first accredited certification to BS 7799 – the forerunner to ISO 27001 – and has been working with the Standard ever since. Hundreds of organisations around the world have achieved accredited certification to ISO 27001 with IT Governance’s guidance – which is distilled in this book.

In Nine Steps to Success – An ISO 27001 Implementation Overview, Alan provides a comprehensive overview of how to lead a successful ISO 27001-compliant ISMS implementation in just nine steps.

 

Product overview

Now in its third edition, Nine Steps to Success has been completely updated to reflect the implementation methodology used by IT Governance consultants in hundreds of successful ISMS implementations around the world.

Aligned with the latest iteration of the Standard – ISO 27001:2013 – this new edition of the original no-nonsense guide to successful ISO 27001 certification is ideal for anyone tackling ISO 27001 for the first time, and covers each element of the ISO 27001 project in simple, non-technical language, including:

  • Getting management support and keeping the board’s attention;
  • Creating a management framework and performing a gap analysis so that you can clearly understand the controls you already have in place and identify where you need to focus your efforts;
  • Structuring and resourcing your project – including advice on whether to use consultants or do it yourself, and an examination of the available tools and resources that will make your job easier;
  • Conducting a five-step risk assessment, and creating a Statement of Applicability and risk treatment plan;
  • Guidance on integrating your ISO 27001 ISMS with an ISO 9001 QMS and other management systems;
  • Addressing the documentation challenges you’ll face as you create business policies, procedures, work instructions and records – including viable alternatives to a costly trial-and-error approach;
  • Continual improvement of your ISMS, including internal auditing and testing, and management review;
  • The six secrets to certification success.

If you’re tackling ISO 27001 for the first time, Nine Steps to Success will give you the guidance you need to understand the Standard’s requirements and ensure your implementation project is a success – from inception to certification.

 

Contents

  1. Project mandate
  2. Project initiation
  3. ISMS initiation
  4. Management framework
  5. Baseline security criteria
  6. Risk management
  7. Implementation
  8. Measure, monitor and review
  9. Certification

 

About the author

Alan Calder is the founder and executive chairman of IT Governance Ltd. He led the implementation of the management system that achieved the world's first accredited certification to BS 7799 – the forerunner to ISO 27001 – and has been working with the Standard through all of its iterations ever since, helping hundreds of organisations to achieve certification to the Standard.

Expert guidance for anyone tackling ISO 27001 for the first time – buy this book today and learn the nine steps essential for a successful ISMS implementation.

 

Author: Alan Calder
Publisher: IT Governance Publishing
Published: May 2016
Availability: In Stock

Product Rating: (5,00)   # of Ratings: 3   (Only registered customers can rate)

(Only registered customers can rate)

1 - Terrible
2 - Bad
3 - OK
4 - Good
5 - Great
0% 50% 100%

Sort: New to Old RE-SORT COMMENTS:

Showing comments 1-3 of 3
1. Thomas F. Witwicki on 22.03.2016, said:

It’s like having a $300/hr consultant at your elbow as you consider the aspects of gaining management support, planning, scoping, communication, etc.
Was this comment helpful? yes no   (0 people found this comment helpful, 0 did not)
2. Zensright on 20.11.2015, said:

This book serves as a check list/ reminder to the professional as well as a guide to what is coming for those who are not living the Info Sec dream.
Was this comment helpful? yes no   (0 people found this comment helpful, 0 did not)
3. Jason Brown on 20.10.2015, said:

“Great Quality, A must for getting ISO 27001 Certified”
Was this comment helpful? yes no   (0 people found this comment helpful, 0 did not)
Showing comments 1-3 of 3






ISO27001/ISO27002 A Pocket Guide, Second Edition
ISO27001/ISO27002 A Pocket Guide, Second Edition
Case for ISO 27001 & Nine Steps to Success
Case for ISO 27001 & Nine Steps to Success
The Case for ISO 27001 (2013) Second Edition
The Case for ISO 27001 (2013) Second Edition
IT Governance: Implementing Frameworks and Standards for the Corporate Governance of IT
IT Governance: Implementing Frameworks and Standards for the Corporate Governance of IT