Product Description

This book is an introduction to the very extensive subject of information security. With an ever increasing requirement for confidentiality it is easy to see why this subject has become one of the most important in recent times. However, information security is not just about keeping information private but also about its integrity and making it available appropriately. In a society that is demanding increased availability of information in any number of areas and using increasingly complex types of technology including mobile phones, laptops, on the move in trains and aircraft, there will always be growing risks to the information and its security. A compromise must be struck between security of information and its availability but this must be done in a realistic and knowledgeable manner if it is to remain effective. This book, and the ISEB's 'Information Security Management Principles' qualification which it supports, provide significant first steps along the path of dealing with information security in a realistic and comprehensive manner.

Product Details

• Amazon Sales Rank: #100943 in Books
• Published on: 2008-09-29
• Original language: English
• Number of items: 1
• Binding: Paperback
• 216 pages

Review
The security of personal information has never been of greater concern to the public. If the public s trust in those who hold their personal details is to be improved then information security cannot be left to chance. Implementing effective information security management principles is essential. The BCS provides valuable leadership in this area and this is a timely contribution to a vital process. --Richard Thomas, Information Commissioner.

The blurb on the cover indicates it is directed at business and IT managers but it is more likely to be of use to the worker who has to set up the system. To this end, encouragement and tips are given throughout on how to justify implementaton of the systems and controls to management. --IT Training Magazine

In looking for a technical book I look for authoritative writing; clarity of expression; knowledge; easy navigation and the sense that I am not having to work to find the information I need to get a job done. In this book I have found all of those things. Congratulations to the authors. --A senior Whitehall security specialist (anonymous for obvious reasons)

From the Back Cover
Demand for access to fast, reliable data is driving our information economy. But as work and leisure become increasingly digitised and mobile, new risks are emerging which threaten the very information that help business and society function. By focusing on the three main areas of information assurance - confidentiality, integrity and availability - Information Security Management Principles provides business and IT managers with the skills to identify these threats and protecting against them.

Key areas covered include:
Risk management
Information security implementation
Networks and communications
Cryptography
Business continuity and disaster recovery

The authors are at the forefront of information security, helping shape policy and implement best practice at organisations including the Home Office, British Airways, GCHQ, Marks and Spencer, the MoD, RAF and O2. As members of the ISEB Exam Panel, they are responsible for setting the course content and syllabus.

About the Author
The authors are at the forefront of information security for several years, and continue to help shape policy and implement best-practice. They have gained considerable experience across a wide range of sectors including central government, the armed services and large commercial organisations, including the Home Office, GCHQ, MoD, RAF, Royal Navy, British Airways, Marks & Spencer and O2. They continue to be actively engaged in the field of information security, and are also involved in a number of industry-wide organisations and initiatives. As members of the ISEB Exam Panel on Information Security Management Principles, they are responsible for shaping course content, and setting the syllabus.

Customer Reviews

An excellent introduction to information assurance
Information assurance or security is a growing concern and this introductory book covers all the basic principles. Intended to support the ISEB examination of the same name, it provides a good grounding to anyone faced with the issues of proper information security and how to implement it. It supports the international information security standards and gives a good insight into some of the more complex areas.

It has been approved by the Information Commissioner as making a "... timely contribution ..." to the understanding of the issue.

This publication should be read by all IT managers and information security managers at all levels in an organisation as well as those more senior managers with corporate or departmental information security responsibilities.