"Written for managers, this addresses how they should comply with best practice on the security, confidentiality and integrity of data stored on IT systems." - "The Times". "Should be read by every computer professional with responsibility for security." - "IMIS Journal". The development of IT governance - which recognizes the convergence between business and IT management - makes it essential for managers at all levels and in organizations of all sizes to understand how best to deal with information security risks. Also, the Turnbull report on company risk management (alongside laws and regulations throughout the OECD) gives company directors a legal responsibility to act on computer and information security. Containing the latest revisions to BS7799 and ISO17799, this book guides business managers through the issues involved in achieving ISO certification in Information Security Management and covers all aspects of data security.