A review of the industry standard textbook by Andy Taylor, David Alexander, et al.
Take one star off only because the cloud security chapter feels slightly dated. Otherwise, mandatory reading. Call to Action: Have you used the 3rd edition for your CISMP or ISO 27001 lead implementer exam? Let me know in the comments whether you prefer the PDF or the dead-tree version. information security management principles third edition pdf
Too many leaders buy a firewall (Technology) and skip the password policy (Process). This book dedicates serious real estate to the human factor: security awareness training, social engineering defense, and the surprisingly complex process of background checks during hiring. A review of the industry standard textbook by
Why the 3rd Edition of “Information Security Management Principles” Still Deserves a Spot on Your Desk (Even as a PDF) Call to Action: Have you used the 3rd