Ely, England (PRWEB) June 6, 2008
Since first published in 2002, Alan Calder and Steve Watkins' management guide has been acclaimed as the definitive work on best practice information security management. This month sees the publication of the book's fourth edition, under the revised title 'IT Governance: A Manager's Guide to Data Security and ISO27001/ISO27002' (http://www.itgovernance.co.uk/products/4), which is updated to reflect the latest international regulatory changes and includes a subscription to IT Governance's online knowledge bank, to keep readers abreast of fresh developments in this constantly-changing area.
'IT Governance: A Manager's Guide to Data Security and ISO 27001/ISO 27002', which is published by Kogan Page, addresses the central role of information technology in today's organisations and its vital importance as a Board-level responsibility. Tasked with ensuring that IT is properly aligned with business strategy, the Board must also guarantee strict governance of the organisation's IT practices, assets and resources. Discharging this responsibility requires that Board directors, executives and business owners clearly understand the issues surrounding data security, and it was for this purpose that Calder and Watkins first wrote their classic text.
Written for non-technical and generalist business leaders, 'IT Governance: A Manager's Guide to Data Security and ISO 27001/ISO 27002' is designed to aid understanding of an organisation's IT governance obligations, and offer guidance on how managers should comply with best practice in the security, confidentiality and integrity of data stored on IT systems. It addresses the role of data security within IT governance, and outlines the steps required to achieve certification to ISO 27001, the global best practice standard for information security management.
Accessible and concise, 'IT Governance: A Manager's Guide to Data Security and ISO 27001/ISO 27002' walks the reader through the current data security landscape, outlining the need for a farsighted information security policy, and examining crucial topics such as certification, risk assessment, asset management, controls and e-commerce.
Key updates to the fourth edition include a full assessment of the latest regulatory developments affecting information security, including the UK's Combined Code and the USA's Sarbanes-Oxley Act. To allow for the constant changes in data security management and regulations, purchasers of 'IT Governance: A Manager's Guide to Data Security and ISO 27001 / ISO 27002' will receive access to a password protected area of the IT Governance website, http://www.itgovernance.co.uk, where they can access regular updates and bulletins on data security.
Discussing the enduring relevance of the book, Alan Calder said, "Whether they consider themselves 'IT-friendly' or not, all Board directors have a specific obligation to monitor, assess and govern their organisation's IT infrastructure programme. Each Board director, whatever their background or specialism, needs to have visible, positive oversight of their organisation's IT strategy, and be able to understand and demonstrate that risks are managed and corporate objectives are supported and achieved. This book gives them the background and insight they need to fulfil their IT governance obligations."
'IT Governance: A Manager's Guide to Data Security and ISO 27001/ISO 27002' is priced at £45.00/$89.10/€58.50 and is available in soft cover (ISBN 978-0-7494-5271-1). To purchase a copy for immediate despatch, visit http://www.itgovernance.co.uk/products/4.
NOTES TO EDITORS
IT Governance Ltd is the one-stop shop for books, tools, training and consultancy for Governance, Risk Management and Compliance. It is a leading authority on data security and IT governance for business and the public sector. IT Governance is 'non-geek', approaching IT issues from a non-technology background and talking to management in its own language. Its customer base spans Europe, the Americas, the Middle East and Asia. More information is available at http://www.itgovernance.co.uk.
ABOUT THE AUTHORS:
Alan Calder is an international authority on information security management. He led the world's first successful implementation of BS 7799, the information security management standard upon which ISO 27001 is based, and wrote the definitive compliance guide for this standard, 'IT Governance: A Manager's Guide to Data Security and BS7799/ISO17799'. The 4th edition of this book is the basis for the UK Open University's postgraduate course on Information Security. He is a consultant to companies including Cisco. He regularly blogs on IT security issues at http://alancalder.blogspot.com/.
Steve Watkins is a highly respected trainer, consultant and author in the fields of IT Governance, Risk Management and Compliance. His career encompasses over 17 years of working for a wide range of public and private sector employers from multinationals to SMEs, including experience in managing integrated management systems, particularly the maintenance of Information Security, Quality, Environmental and Investor in People certification. As well as being a trained ISO27001 and ISO9000 auditor, Watkins is a trained EFQM Assessor and holds diplomas in safety and financial management. Watkins is a board director of IT Governance Ltd, where he is charge of the company's consultancy business.