Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Cybersecurity and Privacy Law Handbook
  • Table Of Contents Toc
Cybersecurity and Privacy Law Handbook

Cybersecurity and Privacy Law Handbook

By : Rocchi
3 (2)
Buy this Book
close
close
Cybersecurity and Privacy Law Handbook

Cybersecurity and Privacy Law Handbook

3 (2)
By: Rocchi
Buy this Book

Overview of this book

Cybercriminals are incessantly coming up with new ways to compromise online systems and wreak havoc, creating an ever-growing need for cybersecurity practitioners in every organization across the globe who understand international security standards, such as the ISO27k family of standards. If you’re looking to ensure that your company's data conforms to these standards, Cybersecurity and Privacy Law Handbook has got you covered. It'll not only equip you with the rudiments of cybersecurity but also guide you through privacy laws and explain how you can ensure compliance to protect yourself from cybercrime and avoid the hefty fines imposed for non-compliance with standards. Assuming that you're new to the field, this book starts by introducing cybersecurity frameworks and concepts used throughout the chapters. You'll understand why privacy is paramount and how to find the security gaps in your company's systems. There's a practical element to the book as well—you'll prepare policies and procedures to prevent your company from being breached. You’ll complete your learning journey by exploring cloud security and the complex nature of privacy laws in the US. By the end of this cybersecurity book, you'll be well-placed to protect your company's data and comply with the relevant standards.
Table of Contents (18 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Download the color images
Icon
Conventions used
Icon
Get in touch
Icon
Share Your Thoughts
Icon
Download a free PDF copy of this book
1
Part 1: Start From the Basics
Icon
Part 1: Start From the Basics
Lock Free Chapter
2
Chapter 1: ISO27001 – Definitions and Security Concepts
chevron up
Icon
Chapter 1: ISO27001 – Definitions and Security Concepts
Icon
The 27k family of standards
Icon
Confidentiality, integrity, and availability
Icon
Information security concepts and definitions
Icon
Governance, policies, and incident management
Icon
Differences between ISO 27001 and NIST
Icon
Summary
3
Part 2: Into the Wild
Icon
Part 2: Into the Wild
4
Chapter 2: Mandatory Requirements
Icon
Chapter 2: Mandatory Requirements
Icon
iSMS, controls, commitment, context, scope policy, and objectives
Icon
Identify, Protect, Detect, Respond, and Recover
Icon
Can ISO 27001 and NIST coexist?
Icon
Summary
5
Chapter 3: Data Protection
Icon
Chapter 3: Data Protection
Icon
What is privacy (and why do we desperately need it)?
Icon
GDPR and his brothers
Icon
Why deal with data protection?
Icon
The six principles of the GDPR
Icon
Summary
6
Chapter 4: Data Processing
Icon
Chapter 4: Data Processing
Icon
The data controller
Icon
The data processor
Icon
Accountability
Icon
EU–US Privacy Shield
Icon
Summary
7
Chapter 5: Security Planning and Risk Management
Icon
Chapter 5: Security Planning and Risk Management
Icon
Security threats and challenges
Icon
Implementing a risk management program
Icon
Summary
8
Part 3: Escape from Chaos
Icon
Part 3: Escape from Chaos
9
Chapter 6: Define ISO 27001 Mandatory Requirements
Icon
Chapter 6: Define ISO 27001 Mandatory Requirements
Icon
ISO 27001 operations
Icon
ISO 27001 support requirements (or Clause 7)
Icon
Summary
10
Chapter 7: Risk Management, Controls, and Policies
Icon
Chapter 7: Risk Management, Controls, and Policies
Icon
Elements of project risk management
Icon
Data classification
Icon
ISO 27001 controls
Icon
Summary
11
Chapter 8: Preparing Policies and Procedures to Avoid Internal Risk
Icon
Chapter 8: Preparing Policies and Procedures to Avoid Internal Risk
Icon
Company policies
Icon
Policy writing instructions
Icon
Company procedures
Icon
Summary
12
Chapter 9: Social Engineering, Password Guidance, and Policy
Icon
Chapter 9: Social Engineering, Password Guidance, and Policy
Icon
The starting point
Icon
Common social engineering attack methods
Icon
Have you got a M.A.P.P.?
Icon
Summary
13
Chapter 10: The Cloud
Icon
Chapter 10: The Cloud
Icon
How did the cloud emerge?
Icon
The seven pain points of cloud computing
Icon
Cloud and GDPR concerns
Icon
The GDPR code of conduct for CSPs
Icon
Summary
14
Chapter 11: What about the US?
Icon
Chapter 11: What about the US?
Icon
The US status of privacy
Icon
The FTC
Icon
An overview of Section 5 of the FTC Act
Icon
NIST and FTC
Icon
BYOD
Icon
Remote working
Icon
What privacy rights are available to employees?
Icon
Summary
15
Index
Icon
Index
Icon
Why subscribe?
16
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Packt is searching for authors like you
Icon
Share Your Thoughts
Icon
Download a free PDF copy of this book
1
Appendix
Icon
Appendix
Icon
ISO 27002
Icon
Privacy
Icon
VA/PT

ISO27001 – Definitions and Security Concepts

My aim in writing this book is providing you a comfortable way to understand and enhance the cybersecurity and privacy within your entity. Of course this book is not targeted at seasoned experts in ISO27001 implementation; moreover, when I planned it, my targets were managers that know almost nothing about cybersecurity and privacy but want to improve company security, even using third-party consulting (and therefore wanting to know whether the external service is wasting internal budget), or novices that, for some reason, have to deal with IT security in a smoooth way.

It’s a long trip, although I will try my best to help you digest an enormous amount of information in a short, agile book. I hope you find it interesting and forgive those mistakes that, unfortunately, will appear no matter how many corrections I make.

Since it’s a long trip, I suggest you prepare by putting on a pair of comfortable slippers and making a huge cup of coffee (or tea, as you wish), and sit down and relax.

In this chapter, we will cover the following topics:

  • The 27k family of standards
  • Confidentiality, integrity, and availability
  • Information security concepts and definitions
  • Governance, policies, and incident management
  • Differences of NIST
Visually different images
CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Cybersecurity and Privacy Law Handbook
End of Section 2
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon