Information Security Management with ITIL V3 (Paperback)

This title is a comprehensive source of information on the ITILv3 Information Security Management process. This groundbreaking new title looks at information security from defining what security measures positively support the business, to implementation to maintaining the required level and anticipating required changes. It covers: 1) Fundamentals of information security providing readers insight and give background about what is going to be managed. Topics covered include: types of security controls, business benefits and the perspectives of business, customers, partners, service providers, and auditors. 2) Fundamentals of management of information security - explains what Information Security Management is about and its objectives. Details are also given on implementing the process and the continuous effort required to maintain its quality. 3) ITILv3 and Information Security Management - shows the links with the other ITIL processes. Shows how integrating the Information Security Management activities into existing processes and activities not only supports efficiencies but ultimately is the key way to achieve effective Information Security Management. 4) Implementing Information Security Management - gives practical advice how to put Information Security Management into practice. From awareness in the organization via documentation required, to maturity models. This guidance describes best practices for realizing Information Security Management. Key Features and Benefits: 1) One of the few titles available that covers the Information Security Management process - providing a one-stop shop for information relating to information security in the context of ITIL. 2) Written in a straight forward and easy-to-understand style that makes the book both easy to use and read. Making the information easier to understand. 3) The information within the book is aligned with that in the ISO/IEC 27000 family of information security standards. Helping you to integrate and leverage the strengths of both frameworks. Leading to costs saving, increases in efficiency and a higher level of information security.