Information Security Management Principles

By (author) David Alexander, Amanda Finch, David Sutton, Andy Taylor Edited by Andy Taylor

Publication date: 25 Nov 2019

In today’s technology-driven environment, there is an ever-increasing demand for information delivery. A compromise has to be struck between security and availability. This book is a pragmatic guide to information assurance for both business professionals and technical experts. The third edition has been updated to reflect changes in the IT security landscape and updates to the BCS Certification in Information Security Management Principles, which the book supports.
Paperback - £39.99
The authors are at the forefront of information security and are instrumental in shaping policy and implementing best-practice. They have gained considerable experience across a wide range of public and private sector bodies including the Home Office, GCHQ, MoD, RAF, Royal Navy, British Airways, Marks & Spencer and O2.

Dimensions: 244x170mm

Print ISBN-13: 9781780175188

224 pages

Imprint: BCS, The Chartered Institute for IT

Information security principles

Information risk

Information security framework

Software development and life cycle

Procedural and people security controls

Technical security controls

Physical and environmental security

Disaster recovery and business continuity management

Other technical aspects



Although the book is targeted at students taking the CISMP examination, I would still recommend this book for any IT professional wishing to understand more about information security. The language used in the book is very accessible, so I would also recommend it to any senior manager wishing to understand the basics. If you want an excellent introduction to information security you could do worse than buying a copy of this book. Highly recommended.

John Hughes
InfoSec Skills