Cyber Security Expertise Book Bundle

IT Governance – An international guide to data security and ISO 27001/ISO 27002, Eighth edition

Recommended textbook for the Open University’s postgraduate information security course and the recommended text for all IBITGQ ISO 27001 courses.

In this updated edition, renowned ISO 27001/27002 experts Alan Calder and Steve Watkins:

• Discuss the ISO 27001/27002:2022 updates;
• Provide guidance on how to establish a strong IT governance system and an ISMS (information security management system) that complies with ISO 27001 and ISO 27002;
• Highlight why data protection and information security are vital in our ever-changing online and physical environments;
• Reflect on changes to international legislation, e.g. the GDPR (General Data Protection Regulation); and
• Review key topics such as risk assessment, asset management, controls, security, supplier relationships and compliance.

Nine Steps to Success – An ISO 27001:2022 implementation overview

Nine Steps to Success has been updated to reflect the 2022 version of ISO 27001. This must-have guide from expert Alan Calder will help you get to grips with the requirements of the Standard and make your ISO 27001 implementation project a success. This guide:

• Details the key steps of an ISO 27001 project from inception to certification;
• Explains each element of the ISO 27001 project in simple, non-technical language; and
• Is ideal for anyone tackling ISO 27001 implementation for the first time.

ISO 27001 controls – A guide to implementing and auditing, Second edition

Ideal for information security managers, auditors, consultants and organisations preparing for ISO 27001:2022 certification. The book covers the following:

• Implementation guidance – what needs to be considered to fulfil the requirements of the controls from ISO/IEC 27001:2022, Annex A. This guidance is aligned with ISO/IEC 27002:2022, which gives advice on implementing the controls.
• Auditing guidance – what should be checked, and how, when examining the ISO/IEC 27001:2022 controls to ensure that the implementation covers the ISMS control requirements.

Combatting Cyber Terrorism – A guide to understanding the cyber threat landscape and incident response planning

This book analyses the evolution of cyber terrorism and what organisations can do to mitigate this threat. It discusses:

• Definitions of cyber terrorism;
• Ideologies and idealisations that can lead to cyber terrorism;
• How threat actors use computer systems to diversify, complicate and increase the impact of terrorist attacks;
• The role of Big Tech and social media organisations such as X (formerly Twitter) and Instagram within the cyber threat landscape; and
• How organisations can prepare for acts of cyber terrorism via security planning and incident response strategies such as ISO 31000, ISO 27001 and the NIST Cybersecurity Framework.

Artificial Intelligence – Ethical, social, and security impacts for the present and the future, Second edition

This book presents a concrete approach to identifying appropriate ethical principles in AI solutions. This second edition:

• Explores the complex topic of AI ethics in a cross-functional way;
• Enables understanding of the associated ethical challenges of AI technologies;
• Provides an up-to-date overview of the potential positive and negative outcomes of AI implementation; and
• Has been updated to reflect the ethical challenges of AI in 2024 and beyond, and the moral imperative of navigating this new terrain.