IT Governance and Information Security by Maleh, Yassine; Sahid, Abdelkebir; Alazab, Mamoun;

Rövid leírás:

In this new book, The authors share their experience to help you navigate today's dangerous information security terrain and take proactive steps to measure your company IT Governance and information security maturity and prepare your organization to survive, thrive and keep your data safe.

Hosszú leírás:

IT governance seems to be one of the best strategies to optimize IT assets in an economic context dominated by information, innovation, and the race for performance. The multiplication of internal and external data and increased digital management, collaboration, and sharing platforms exposes organizations to ever-growing risks. Understanding the threats, assessing the risks, adapting the organization, selecting and implementing the appropriate controls, and implementing a management system are the activities required to establish proactive security governance that will provide management and customers the assurance of an effective mechanism to manage risks.

IT Governance and Information Security: Guides, Standards, and Frameworks is a fundamental resource to discover IT governance and information security. This book focuses on the guides, standards, and maturity frameworks for adopting an efficient IT governance and information security strategy in the organization. It describes numerous case studies from an international perspective and brings together industry standards and research from scientific databases. In this way, this book clearly illustrates the issues, problems, and trends related to the topic while promoting the international perspectives of readers.

This book offers comprehensive coverage of the essential topics, including:

• IT governance guides and practices;








• IT service management as a key pillar for IT governance;








• Cloud computing as a key pillar for Agile IT governance;








• Information security governance and maturity frameworks.

In this new book, the authors share their experience to help you navigate today’s dangerous information security terrain and take proactive steps to measure your company’s IT governance and information security maturity and prepare your organization to survive, thrive, and keep your data safe. It aspires to provide a relevant reference for executive managers, CISOs, cybersecurity professionals, engineers, and researchers interested in exploring and implementing efficient IT governance and information security strategies.

Tartalomjegyzék:

Preface

Acknowledgment

Introduction

Section 1:

IT Governance: Definitions and Standards

Chapter 1

Information System and IT Governance Evolution

Chapter 2

IT Governance and Information Security: Guides and Standards

Section 2:

Maturity Frameworks for Information Technology Governance

Chapter 3

IT Governance IT Governance in Organizations: A Maturity Framework based on COBIT 5

Chapter 4

IT Service Management as a key pillar for IT Governance: A Maturity Framework based on ITILv4

Chapter 5

Cloud Computing as a key pillar for Agile IT Governance

Section 3:

Maturity Frameworks for Information Security Governance

Chapter 6

Information Security Governance: Best practices in organizations

Chapter 7

Information Security Governance: A maturity framework based on ISO/IEC 27001

Chapter 8

Information Security Policy: A Maturity Framework based on ISO/IEC 27002

Conclusion

Compilation of References

Acronyms

About the Authors

Index