Information Risk Management A practitioner's guide. /

Show other versions (3)

Information risk management (IRM) is about identifying, assessing, prioritising and treating risks to keep information secure and available. This accessible book is a practical guide to understanding the principles of IRM and developing a strategic approach to an IRM programme. It is the only textbo...

Full description

Bibliographic Details
Call Number:Libro Electrónico
Main Author: Sutton, David (Information security practitioner) (Author)
Format: Electronic eBook
Language:Inglés
Published: Swindon : BCS Learning & Development Limited, 2021.
Edition:Second edition.
Subjects:
Information technology > Management.
Risk management.
Technologie de l'information > Gestion.
Gestion du risque.
risk management.
Information technology > Management
Risk management
Online Access:Texto completo
Table of Contents:
  • 1. The need for information risk management2. Review of information security fundamentals3. The information risk management programme 4. Risk identification 5. Threat and vulnerability assessment 6. Risk analysis and risk evaluation 7. Risk treatment 8. Risk reporting and presentation 9. Communication, consultation, monitoring and review 10. The NCSC Certified Certification scheme 11. HMG Security-related documents 12. Appendix A
  • Taxonomies and descriptions 13. Appendix B
  • Typical threats and hazards 14. Appendix C
  • Typical vulnerabilities 15. Appendix D
  • Information Risk Controls 16. Appendix E
  • Methodologies, guidelines and tools 17. Appendix F
  • Templates 18. Appendix G
  • HMG cyber security guidelines 19. References and further reading

Similar Items