Information Technology Governance

Based on insights gained from academic research, as well as interviews with UK-based security professionals from various sectors, The Psychology of Information Security describes how resolving conflicts between security compliance and human behavior explains the importance of careful risk management and how to align a security program with wider business objectives, providing methods and techniques to engage stakeholders and encourage buy-in.

A new edition of the number one book in the human computer interaction field! This book seeks to chart the technology-fueled changes taking place in the field of corporate governance and describes the impact these changes are having on boards and the enterprises they govern. It also describes what the future could look like once companies truly embrace the power of technology to change governance. Additionally, this book will provide a set of "suggested action steps" for companies and their boards focused on ways they can leverage technology tools to enhance governance immediately.

Created for IT service managers, consultants, and other practitioners in IT governance, risk management, and compliance, this practical book discusses all the key concepts of COBIT® 5 and explains how to direct the governance of enterprise IT (GEIT) using the COBIT®5 framework. Drawing on more than 30 years of experience in the IT sector, the author explains the main frameworks and standards supporting GEIT, discusses the ideas of enterprise and governance, and describes the path from corporate governance to the governance of enterprise IT.

Written by an acknowledged expert on the ISO/IEC 27001 standard, ISO 27001: 2022–An Introduction to Information Security and the ISMS Standard is an ideal primer for anyone implementing an information security management system aligned to ISO 27001: 2022.

It is estimated that standard computer-based defense systems catch only 25 percent of malware attacks. Do you know the risks you’re running online? Are you protected? An Introduction to Hacking and Crimeware answers your concerns and provides a foundation-level overview of the dark world of cybercrime. This is a comprehensive guide to more serious online threats. Knowledge of these threats will help you understand how to ensure that your computer systems are protected and make sure that your business is safe, enabling you to focus on your core activities without fear of attack.

Integrating and managing the services of multiple third-party IT service providers is becoming increasingly popular, but there is no formal best-practice guidance for service integration and management (SIAM). This book provides clear guidance on the SIAM process, answering questions on what service integration is, when SIAM is applicable, and what approach should be taken when sourcing ITSM services in a multi-sourced environment.