eBooks-it.org Logo
eBooks-IT.org Inner Image

ISO27001 in a Windows Environment

The Best Practice Handbook for a Microsoft Windows Environment

2nd Edition
ISO27001 in a Windows Environment Image

Book Details:

Publisher:It Governance Ltd
Series: MIX , Handbook
Author:Brian Honan
Edition:2
ISBN-10:1849280495
ISBN-13:9781849280495
Pages:322
Published:Apr 21 2010
Posted:Nov 19 2014
Language:English
Book format:PDF
Book size:1.53 MB

Book Description:

A fundamental title that should be part of every information security practitioner s technical library! The vast majority of ISO27001 implementations will, to one extent or another, take place in a Windows environment. ISO27001 project managers are not always Microsoft technical experts, but a large number of the ISO27001 controls require a technical implementation. Bridging the gap between non-technical ISO27001 project managers and IT specialists, this book explains what the controls are, and describes how to implement them in a Windows environment, equipping the ISO27001 project manager to succeed with the implementation. MCSEs who have security training (MCSE Security), but who may not understand the ISO27001 approach to selecting and implementing controls, will also benefit from this book. It provides them with the necessary rationale and links their technical understanding of Microsoft information security controls into the international best practice framework for information security. This book should be a core part of the technical library of every MCSE and information security practitioner. If you have a CISSP, CISM, GIAC, or another professional certification, you should read this book. Covering best practice implementation over a wide range of Windows(r) environments, this second edition is completely up to date for Windows(r) 7 and Server(r) 2008. Benefits to business include: * Enable successful implementation Although ISO27001 project managers are seldom Microsoft technical experts, a large number of the ISO27001 Annexe A controls demand a technical implementation. Now, thanks to this book, project managers can finally give a clear explanation to their technical people of what is required under ISO27001. Armed with this guide, a project manager will find it much easier to succeed with implementation of ISO27001 * Help security engineers to understand ISO27001 ISO27001 is the international best practice framework for information security. However, because ISO27001 takes a business risk approach, it is unfamiliar territory to many Microsoft Certified Systems Engineers (MCSEs), even if they already have security training (MCSE Security). With this book, MSCEs can fill a gap in their knowledge and thereby harness their technical understanding of the Microsoft information security controls to drive through implementation of ISO27001 * Improve security and reliability. The purpose of ISO27001 is to ensure the confidentiality, integrity and availability of your business information. By putting suitable controls in place you can achieve these CIA goals. In this way you will also make your storage and handling of data more reliable * Take advantage of the tools you already have to hand. Since Microsoft products are so widely used, the technical details in this book are based on the Microsoft Windows(r) platform. This book shows IT managers how to make effective use of the Microsoft technologies at their disposal to support implementation of ISO27001. As a result, your organisation should be able to achieve certification without having to buy additional third-party software. Security improvements from Microsoft Microsoft s latest desktop operating system, Windows(r) 7, comes with many security improvements. You can use these to help you to develop an ISMS that complies with ISO27001. One of these features is BitLocker, an encrypting system that allows you to encrypt individual files and folders. You can also encrypt the entire contents of a computer s hard disk to make the data stored on it unavailable to unauthorised personnel. BitLocker To Go enables you to transport information securely from one system to another using portable devices such as a USB. Another feature of Windows 7, AppLocker, will allow your organisation to restrict the applications available to a user on a desktop. By preventing improper use of key

Download Link:

Related Books:

Encryption in a Windows Environment

EFS File, 802.1x Wireless, IPSec Transport, and S/MIME Exchange
Encryption in a Windows Environment Image
With the current business, government, and institutional focus on security, organizations are scrambling to make their networks more secure. Although encryption is nothing new to Windows, recent advances in Microsoft Windows 2003 and Microsoft Windows XP have drastically simplified the support of encryption technologies in Windows environments. Delivered in Adobe PDF format for quick and easy access, Encryption in a Windows Environment: EFS File, 802.1x Wireless, IPSec Transport, and S/MIME Exchange, 1/e covers the installation and operation of EFS file encryption, IPSec communications encryption, 802.1x wireless encryption, L2TP mobile encryption, as well as the auto-enrollment of certificates that drastically simplifies the administration of encryp...

Conducting Network Penetration and Espionage in a Global Environment

Conducting Network Penetration and Espionage in a Global Environment Image
When its all said and done, penetration testing remains the most effective way to identify security vulnerabilities in computer networks. Conducting Network Penetration and Espionage in a Global Environment provides detailed guidance on how to perform effective penetration testing of computer networksusing free, open source, and commercially available tools, including Backtrack, Metasploit, Wireshark, Nmap, Netcat, and Nessus. It also considers exploits and other programs using Python, PERL, BASH, PHP, Ruby, and Windows PowerShell.The book taps into Bruce Middletons decades of experience with computer security, including penetration testing of military networks, the White House, utilities, manufacturing facilities, CIA headquarters, the Defense Infor...

MCSA/MCSE Exam 70-299

Implementing and Administering Security in a Windows 2003 Network Exam Cram 2
MCSA/MCSE Exam 70-299 Image
The 70-299 exam measures your ability to implement, manage, maintain, and troubleshoot security in a Windows Server 2003 network infrastructure and also plan and configure a Windows Server 2003 PKI. The MCSE 70-299 Exam Cram 2 gives you the essential information you need to know to learn how to implement, manage, and troubleshoot security policies, patch management infrastructure, security for network communications, as well as how to plan, configure and troubleshoot authentication, authorization, and PKI. This book can be used as a sole study guide for those experienced with Windows 2003 security or it is the perfect supplement guide for more comprehensive training materials, instructor-led classes, and/or computer-based training....



2007 - 2021 © eBooks-IT.org