Information Security Management Professional (ISMP) based on ISO/IEC 27001 Courseware
Paperback Engels 2023 4e druk 9789401810739Samenvatting
Information is crucial for the continuity and proper functioning of both individual organizations and the economies they fuel; this information must be protected against access by unauthorized people, protected against accidental or malicious modification or destruction and must be available when it is needed.
The EXIN Information Security Management (based on ISO/IEC 27001’22) certification program consist out of three Modules: Foundation, Professional and Expert.
This book is the officially by Exin accredited courseware for the Information Security Management Professional training. It includes:
- Trainer presentation handout
- Sample exam questions
-Practical assignments
- Exam preparation guide
The module Information Security Management Professional based on ISO/IEC 27001 tests understanding of the organizational and managerial aspects of information security.
The subjects of this module are Information Security Perspectives (business, customer, and the service provider) Risk Management (Analysis of the risks, choosing controls, dealing with remaining risks) and Information Security Controls (organizational, technical and physical controls).
The program and this courseware are intended for everyone who is involved in the implementation, evaluation, and reporting of an information security program, such as an Information Security Manager (ISM), Information Security Officer (ISO) or a Line Manager, Process Manager or Project Manager with security responsibilities. Basic knowledge of Information Security is recommended, for instance through the EXIN Information Security Foundation based on ISO/IEC 27001 certification.
Specificaties
Lezersrecensies
Inhoudsopgave
Timetable 8
Introduction
Information Security Management Professional
About this Courseware (4) 10
ISFS exam specifications (7) 12
Module 1. Information Security Perspective
1.1 Business Perspective (14) 15
1.2 Customer/End user perspective (20) 18
1.3 Service provider / Supplier perspective (23) 20
Module 2. Risk Management
2.1 Analysis – Risk Assessment (28) 22
2.2 Controls – Selection of mitigating controls / strategies (48) 32
2.3 Residual risk (54) 35
Module 3. Information Security Controls
3.1 Organizational controls (68) 42
3.2 Physical controls (84) 50
3.3 People controls (91) 54
3.4 Technological controls (96) 56
EXIN Body of Knowledge 66
EXIN Sample Exam 125
Answer key 137
EXIN Preparation Guide 153
Rubrieken
- advisering
- algemeen management
- coaching en trainen
- communicatie en media
- economie
- financieel management
- inkoop en logistiek
- internet en social media
- it-management / ict
- juridisch
- leiderschap
- marketing
- mens en maatschappij
- non-profit
- ondernemen
- organisatiekunde
- personal finance
- personeelsmanagement
- persoonlijke effectiviteit
- projectmanagement
- psychologie
- reclame en verkoop
- strategisch management
- verandermanagement
- werk en loopbaan