This book provides information security and risk management teams with detailed, practical guidance on how to develop and implement a risk assessment in line with the requirements of ISO27001. Drawing on international best practice including ISO/IEC 27005 and BS7799-3, the book explains in detail how to do an information security risk assessment. It covers key topics, such as risk scales, threats and vulnerabilities, selection of controls and roles of responsibilities. It includes guidance on choosing risk assessment software. The guidance will enable your organisation to achieve optimum return on investment when selecting and implementing information security controls.
- ISBN13 9781849280440
- Publish Date 13 May 2010
- Publish Status Out of Print
- Out of Print 8 January 2024
- Publish Country GB
- Imprint IT Governance Publishing
- Edition 2nd Revised edition
- Format eBook
- Pages 187
- Language English