It Governance Publishing - Böcker
Visar alla böcker från författaren It Governance Publishing. Handla med fri frakt och snabb leverans.
10 produkter
10 produkter
Resilient Thinking
Protecting organisations in the 21st century, Second edition
Häftad, Engelska, 2023
487 kr
Skickas inom 5-8 vardagar
Resilient Thinking – Protecting Organisations in the 21st Century, Second editionSince the release of the first edition in 2012, a lot has changed in the world of risk and organisational resilience. Global conflict, political realignments, environmental disruptions, pandemics and disease outbreaks and cyber attacks are a plethora of threats that have and will continue to endanger the stability of the world. Alongside these risks and issues, technological and societal change is ushering in a new age of opportunity and progress.What can organisations and individuals do to prepare for an unexpected future?To prepare for the unexpected future, organisations need to be resilient, and this requires:Understanding the current, emerging and future environments and contexts;People who are knowledgeable, confident and capable in building and maintaining resilience in the organisation and themselves; andA sensible approach to the use of guidance, frameworks and initiative.Phil Wood’s much expanded and updated second edition explores, develops and enhances the concepts discussed in his previous book in granular detail, analysing our understanding of where we have been, where we are now, and where we should be going to develop resilient organisations.
Cyber Essentials
A guide to the Cyber Essentials and Cyber Essentials Plus certifications
Häftad, Engelska, 2023
325 kr
Skickas inom 5-8 vardagar
Cyber Essentials – A guide to Cyber Essentials and Cyber Essentials Plus certificationsCyber attacks are a fact of life in the information age. For any organisation that connects to the Internet, the issue is not if an attack will come, but when. Most cyber attacks are performed by relatively unskilled criminals using tools available online. These attacks are often opportunistic: looking for easy targets rather than rich pickings.The Cyber Essentials scheme is a UK government-backed effort to encourage UK-based organisations to improve their cyber security by adopting measures (called controls) that defend against common, less-sophisticated cyber attacks. The scheme recommends practical defences that should be within the capability of any organisation.The Cyber Essentials scheme has two levels:The basic Cyber Essentials; andCyber Essentials Plus.This first part of this book will examine the various threats that are most significant in the modern digital environment, their targets and their impacts. It will help you to understand whether your organisation is ready for Cyber Essentials or Cyber Essentials Plus certification.The second part of the book presents a selection of additional resources that are available to help you implement the controls or become certified.
412 kr
Skickas inom 5-8 vardagar
We live in a world where technology and vast quantities of data play a considerable role in everyday life, both personal and professional.For the foreseeable future (and perhaps beyond), the growth and prominence of data in business shows no signs of slowing down, even if the technology in question will likely change in ways perhaps unimaginable today. Naturally, all this innovation brings huge opportunities and benefits to organisations and people alike. However, these come at more than just a financial cost.In the world as we know it, you can be attacked both physically and virtually. For today’s organisations, which rely so heavily on technology – particularly the Internet – to do business, the latter attack is the far more threatening of the two. The cyber threat landscape is complex and constantly changing. For every vulnerability fixed, another pops up, ripe for exploitation. Worse, when a vulnerability is identified, a tool that can exploit it is often developed and used within hours – faster than the time it normally takes for the vendor to release a patch, and certainly quicker than the time many organisations take to install that patch.This book has been divided into two parts:Part 1: Security principles.Part 2: Reference controls.Part 1 is designed to give you a concise but solid grounding in the principles of good security, covering key terms, risk management, different aspects of security, defence in depth, implementation tips, and more. This part is best read from beginning to end.Part 2 is intended as a useful reference, discussing a wide range of good-practice controls (in alphabetical order) you may want to consider implementing. Each control is discussed at a high level, focusing on the broader principles, concepts and points to consider, rather than specific solutions. Each control has also been written as a stand-alone chapter, so you can just read the controls that interest you, in an order that suits you.
CISO Perspective
Understand the importance of the CISO in the cyber threat landscape
Häftad, Engelska, 2023
285 kr
Skickas inom 5-8 vardagar
In this updated edition, the security threat landscape has widened and the challenge for CISOs to be more than just security coordinators has become a mandate for organizational survival. This book challenges and guides information security professionals to think about information security and risk management from the enterprise level, and not just from the IT perspective.Read this book and understand how:The CISO’s role can improve an organization’s cyber strategy.An enterprise’s view of information security, business continuity, compliance, safety, and physical security is crucial for the success of your organisation’s cyber security defense.Soft skills are crucial in order for the CISO to communicate effectively with the Board and other departments in the organisation.Standards such as ISO 27001:2022 can help your organisation implement a suitable ISMS (information security management system).Risk management is imperative to identify, analyze, evaluate and protect the organization’s assets.
Education in Service Management
A guide to building a successful service management career and delivering organisational success
Häftad, Engelska, 2023
545 kr
Skickas inom 5-8 vardagar
An Education in Service Management – A guide to building a successful service management career and delivering organisational successIT is a business-critical function. It delivers experiences, stimulates strategic shifts, and protects organisations from theft, cyber attacks, and the related regulatory, reputational and financial impacts.ITSM is a critical element of IT that is often misunderstood. In this book, the author and his network of associates demystify ITSM and help you understand how:Working in or with ITSM enables you to build a career that spans global industries, locations and sectors;ITSM roles vary from service desk analyst to chief technology officer or consultant; andAs a CTO, a CIO or an organisational leader, you can enable your teams to deliver exceptional digital experiences that delight your consumers, partners and customers.
266 kr
Skickas inom 5-8 vardagar
ISO 27001/ISO 27002 – A guide to information security management systemsISO 27001 is one of the leading information security standards. It offers an internationally recognised route for organisations of all sizes and industries to adopt and demonstrate effective, independently verified information security.Information is the lifeblood of the modern world. It is at the heart of our personal and working lives, yet all too often control of that information is in the hands of organisations, not individuals. As a result, there is ever-increasing pressure on those organisations to ensure the information they hold is adequately protected.Demonstrating that an organisation is a responsible custodian of information is not simply a matter of complying with the law – it has become a defining factor in an organisation’s success or failure. The negative publicity and loss of trust associated with data breaches and cyber attacks can seriously impact customer retention and future business opportunities, while an increasing number of tender opportunities are only open to those with independently certified information security measures.Understand how information security standards can improve your organisation’s security and set it apart from competitors with this introduction to the 2022 updates of ISO 27001 and ISO 27002.
Del 1 - Everything You Want to Know About
Everything You Want to Know About Organisational Change
Häftad, Engelska, 2011
364 kr
Skickas inom 5-8 vardagar
A must-have book for every organisation that faces change! Your organisation can benefit from change. This book will show you how. Why do organisations change? What are the risks involved? Can we resist change? What is the best way to manage it? What are the key factors that drive change, and how? Why are some changes easier to survive than others? These are just some of the questions that Darren Arcangel and Brian Johnson address in Everything you want to know about Organisational Change. This practical guide recognises that every organisation functions differently, has different goals, and faces different challenges. It will give you the tools you need to understand the factors influencing your organisation, to identify how your business must respond, and to implement the necessary changes. Your organisation will survive and become more efficient. Given particular consideration is the role of IT in managing change, and the way in which it can be both an enabler and an inhibitor of change. This book will show you how to use IT to maximum effect, smoothing your path to change and minimising potential problems.Your business will function much more efficiently, effectively and profitably. Darren Arcangel is currently a VP at CA Technologies. He has held a number of senior positions focusing on IT transformations, including in the areas of project governance, data centre transformations and IT service management. He is an ITIL(R) v3 expert in ITIL service management. Brian Johnson has held a number of key leadership and strategic roles in government and private companies. He was a part of the UK government team that created the ITIL(R) approach. He has written a number of books on ITIL(R), the software life cycle and the role of IT in business.
Del 2 - Everything You Want to Know About
Everything You Want to Know About Business Continuity
Häftad, Engelska, 2012
364 kr
Skickas inom 5-8 vardagar
Business continuity is crucial to the survival of your business. Learn how to manage it effectively. The risks for businesses today are increasing all the time, as are the consequences of incidents and interruptions. Too many companies lose time, customers and income because of circumstances beyond their control. Companies that have a business continuity plan are able to not only minimise their losses and retain their clients, but also win new business! Everything you want to know about Business Continuity will show you how to develop a modern response to the operational risk landscape and how to prepare your organisation for interruptions to your key activities, minimising the impact on your bottom line, reputation and credibility. You will be able to identify and assess the risks to your company and put in place a 'fit-for-purpose' business continuity plan which will enable you to meet the expectations of your customers and stakeholders in the event of an unforeseen incident. This practical book will guide you through domestic and international standards relating to business continuity, with particular reference to ISO22301.Companies achieving certification under the Standard will communicate to their stakeholders their commitment to uninterrupted supply. Your company will enjoy greater customer loyalty and be more competitive, enabling you to retain and win more business! Tony Drewitt held a number of technical, commercial and senior management positions before becoming a full-time management consultant 10 years ago. He was one of the first consultants in the UK to achieve full certification under BS25999-2. Tony has been a practising business continuity consultant, trainer and technical expert since 2001 and is a professional member of the Business Continuity Institute. Everything you want to know about Business Continuity is Tony's third ITG publication and follows the successful BS25999: A Pocket Guide and A Manager's Guide to BS25999. Buy this book and gain the tools you need to future-proof your business!
Power of the Agile Business Analyst
30 surprising ways a business analyst can add value to your Agile development team
Häftad, Engelska, 2013
433 kr
Skickas inom 5-8 vardagar
If the goal of an Agile project is to deliver the highest business value solution possible, why is the business user the least supported member of the Agile team? It's good to be an Agile developer. The Agile community provides Agile developers with countless supporting resources including books, websites, forums, and conferences where Agile development issues can be raised, discussed, and jointly addressed by the group. The interesting thing is that, where Agile approaches go to great lengths to provide developers with the foundation they need to deliver high-value software solutions, there is relatively little equivalent support provided for the business users. In most Agile methods, the business user is solely responsible for the identification, requirements gathering, clarification, and assignment of priorities for their requested system capabilities. Agile development teams rely on business users having sufficient knowledge, vision, objectivity, and time to ensure that these capabilities provide the best possible solution.The Power of the Agile Business Analyst: 30 surprising ways a business analyst can add value to your Agile development team challenges whether Agile projects are truly positioned to deliver the highest-value business solutions without offering business users the equivalent level of support, validation, and collaboration that is provided for the Agile development team. To address this challenge, The Power of the Agile Business Analyst proposes including an Agile business analyst on the development team to provide business users with the support they need, as well as a valuable resource to assist the Agile developers in their analysis, design, testing, and implementation work throughout the project. 30 ways an Agile Business Analyst can help your team Drawing on more than 20 years' experience as a senior business analyst and international solutions consultant, Jamie Lynn Cooke details 30 achievable ways in which Agile business analysts can increase the relevance, quality, and overall business value of your Agile projects. Read this book and learn how to: *Maximize the business value of your Agile solutions.*Leverage the skills, experience, and opportunities an Agile business analyst can bring to your project. *Find the most qualified Agile business analyst to complement your team. *Identify how an Agile business analyst can help you address the most critical challenges on your Agile project. *Use the strengths of an Agile business analyst to position your projects for ongoing funding and executive support. The Power of the Agile Business Analyst also provides guidance for business analysts who want to transition their skills to work most effectively in Agile environments. Bridge the gap between the business users and the Agile development team The Power of the Agile Business Analyst explains how having a skilled business analyst on the Agile team provides business users with peer support for their most critical business requirements, and provides the Agile development team with a business-knowledgeable resource who is available to work hands-on with them throughout the project. These are only some of the ways in which Agile business analysts empower development teams to deliver the most successful Agile solutions.Read this book and discover how an Agile business analyst can significantly increase the value of your solution.
Nine Steps to Success: North American edition
An ISO 27001 Implementation Overview
Häftad, Engelska, 2017
461 kr
Skickas inom 5-8 vardagar
Step-by-step guidance on a successful ISO 27001 implementation from an industry leaderResilience to cyber attacks requires an organization to defend itself across all of its attack surface: people, processes, and technology. ISO 27001 is the international standard that sets out the requirements of an information security management system (ISMS) – a holistic approach to information security that encompasses people, processes, and technology.Accredited certification to the Standard is recognized worldwide as the hallmark of best-practice information security management.Achieving and maintaining accredited certification to ISO 27001 can be complicated, especially for those who are new to the Standard.Author of Nine Steps to Success – An ISO 27001 Implementation Overview, Alan Calder is the founder and executive chairman of IT Governance. He led the world’s first implementation of a management system certified to BS 7799, the forerunner to ISO 27001, and has been working with the Standard ever since.Hundreds of organizations around the world have achieved accredited certification to ISO 27001 with IT Governance’s guidance, which is distilled in this book.Successfully implement ISO 27001 with this must-have guideAligned with the latest iteration of ISO 27001:2013, the North American edition of Nine Steps to Success – An ISO 27001 Implementation Overview is ideal for anyone tackling ISO 27001 for the first time. In nine critical steps, the guide covers each element of the ISO 27001 project in simple, non-technical language. There is a special focus on how US organizations can tackle this governance.This book offers guidance throughout implementation:Getting management support and keeping the board’s attention.Creating a management framework and performing a gap analysis so that you can clearly understand the controls you already have in place, and identify where you need to focus.Structuring and resourcing your project, including advice on whether to use a consultant or do it yourself, and examining the tools and resources that will make your job easier.Conducting a five-step risk assessment, and creating a Statement of Applicability (SoA) and risk treatment plan (RTP).Guidance on integrating your ISO 27001 ISMS with an ISO 9001 quality management system (QMS) and other management systems.Addressing the documentation challenges you’ll face as you create business policies, procedures, workinstructions, and records – including viable alternatives to a costly trial-and-error approach.Continual improvement of your ISMS, including internal auditing and testing, and management review.The six secrets to certification success.If you’re tackling ISO 27001 for the first time, Nine Steps to Success – An ISO 27001 Implementation Overview will give you the guidance you need to understand the Standard’s requirements and ensure your implementation project is a success – from inception to certification.About the author Alan Calder, the founder and executive chairman of IT Governance Ltd, is an internationally acknowledged cybersecurity expert, and a leading author on information security and IT governance issues. He co-wrote the definitive compliance guide IT Governance: An International Guide to Data Security and ISO27001/ISO27002, which is the basis for the UK Open University’s postgraduate course on information security, and has been involved in the development of a wide range of information security management training courses that have been accredited by the International Board for IT Governance Qualifications (IBITGQ). Alan has consulted on data security for numerous clients all over the world, and is a regular media commentator and speaker.