CHAPTER 1
Governance and Risk Management
This chapter discusses the following topics:
• Governance
• Information security management structure
• Principles of information security
• Risk management
• Management and technical information security elements
• Compliance
• Privacy
• Laws and regulatory drivers
• Standards and frameworks
• Information security trends and best practices
• Information security training and certifications
• Ethics
This chapter describes how an organization’s information security program relates to the business as a whole and discusses the key components and purpose of an information security program. This chapter also discusses how the information security program ensures the organization is in compliance ...
Get CCISO Certified Chief Information Security Officer All-in-One Exam Guide now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
