An Education in Service Management. A guide to building a successful service management career and delivering organisational success

IT Governance Publishing, David Barrow

This comprehensive guide to Service Management explores the core principles of ITSM and its crucial role in modern enterprises. It begins by introducing the fundamentals, addressing common challenges, and showcasing the strategic value service management brings to organizations. The book emphasizes practical applications and the importance of communication in building strong professional communities. As the author shares personal insights and experiences, readers gain a deeper understanding of the dynamic nature of service management.The book then shifts to career-focused content, offering guidance on how to transition service management certifications into professional opportunities and growth. By examining the personal and professional sides of service management, it provides readers with actionable steps to advance their careers, whether they are just starting or looking to deepen their expertise. The content encourages readers to see service management as not only a necessary skill but also a fulfilling career path, highlighting both its challenges and rewards.

ITIL(R) 4 High-velocity IT (HVIT). Your companion to the ITIL® 4 Managing Professional HVIT certification

IT Governance Publishing, Claire Agutter

This book guides readers through the core principles and practices of High-Velocity IT, offering a comprehensive approach to modern IT service management. It begins with foundational concepts, introducing High-Velocity IT and the essential behaviors needed for success in dynamic environments. Readers are then introduced to the digital product lifecycle and the ITIL® operating model, which emphasize the importance of service value systems and value streams in driving business outcomes.The book delves into key behaviors that support continuous improvement, including adaptability, trust, and commitment to learning. It also covers various principles and models, such as Lean, Agile, and Design Thinking, offering practical techniques to enhance IT performance.In the later chapters, the focus shifts to ensuring valuable investments, fast development, resilient operations, and co-created value. It presents techniques for achieving these objectives while aligning with ITIL® 4 practices. The final chapter prepares readers for the HVIT certification exam, consolidating key learnings and providing a solid foundation for future success in High-Velocity IT environments. This book offers both theory and practical guidance for those seeking to thrive in fast-paced, value-driven IT operations.

The Security Consultant's Handbook. Essential Strategies for Building and Managing a Security Consulting Business

IT Governance Publishing, Richard Bingley

Becoming a successful security consultant requires a unique set of skills that span both the business and security worlds. This handbook serves as a practical guide to help professionals navigate the complex landscape of security consulting. It covers everything from the entrepreneurial aspects of starting a business to the essential security disciplines like private investigations, information security, and protective security. You’ll also explore the growing importance of resilience in both personal and organizational contexts.The book also delves into the crucial elements of security legislation and regulation, offering a thorough understanding of the legal frameworks that affect security professionals. From UK human rights laws to international laws related to corporate management and conflict, readers will gain the knowledge necessary to operate securely and legally in a variety of environments. Whether you are just starting out or looking to refine your security consulting expertise, this handbook provides the insights needed to thrive in the ever-evolving security industry. It’s a must-read for anyone seeking to build a reputation as a trusted expert in the security consulting field.

Establishing an Occupational Health & Safety Management System. A practical guide to implementing ISO 45001 for better occupational health and safety

IT Governance Publishing, Naeem Sadiq

This book is designed to guide organizations through the process of establishing an Occupational Health and Safety Management System (OHSMS) based on ISO 45001. It begins by explaining the significance of ISO 45001 and its structure, providing a foundational understanding of the standard's importance in enhancing workplace health and safety. The book focuses on critical topics such as identifying workplace risks, determining legal and other regulatory requirements, and the importance of leadership and worker participation. Each section presents practical strategies and methodologies for building and implementing an effective OHSMS, ensuring a proactive safety culture. Through real-world examples and actionable insights, this book helps professionals navigate the complexities of ISO 45001, ensuring organizations meet compliance standards while fostering a safe and healthy work environment.

ISO 27001/ISO 27002. A guide to information security management systems

IT Governance Publishing, Alan Calder

This comprehensive guide demystifies the ISO 27001 and ISO 27002 standards, offering a clear roadmap to understanding, implementing, and managing an Information Security Management System (ISMS). It begins with foundational concepts, a history of ISO 27001, and introduces the ISO 27000 family. The book proceeds to cover the PDCA cycle, Annex SL structure, and the significance of shall vs. should in compliance language.Core chapters walk through ISO 27001’s clauses and requirements, from organizational context and leadership to performance evaluation and continual improvement. Annex A's security controls are explored in detail, linking theory with practical application. ISO 27002 is also thoroughly reviewed to offer guidance on selecting and implementing appropriate controls.By the end of the book, readers gain a strong understanding of ISMS design, certification processes, and control mapping. This resource supports IT managers, compliance officers, and auditors seeking to align with international security standards.

ISO 27001 Controls. Mastering ISO 27001: A Step-by-Step Guide to Effective Implementation and Auditing

IT Governance Publishing, Bridget Kenyon

This guide offers a comprehensive approach to implementing and auditing ISO 27001 controls, providing clear steps for establishing a robust Information Security Management System (ISMS). It is designed to help organizations navigate the complexities of meeting international security standards while ensuring the protection of sensitive information. The book covers every aspect of ISO/IEC 27001, from the foundational principles to practical applications of organizational, physical, and technological controls.Each chapter is carefully structured to explain the implementation of specific controls, focusing on real-world scenarios and offering actionable advice for security professionals. With detailed instructions and clear examples, readers will gain a deep understanding of the ISO 27001 framework and how to align their organizations with best practices. In addition to control implementation, the book emphasizes ongoing compliance and risk management strategies. It highlights critical areas such as incident management, supplier relationships, and data protection, ensuring readers can address security challenges at all levels. Whether new to ISO 27001 or looking to refine an existing ISMS, this book provides the tools necessary for successful information security management and compliance auditing.

ISO 14001 Step by Step. A comprehensive guide to implementing ISO 14001 environmental management standards

IT Governance Publishing, Naeem Sadiq, Asif Hayat Khan

This book offers a thorough walk-through of the ISO 14001 standard, providing practical guidance on meeting its requirements. It includes clear explanations, examples, and sample procedures to help readers understand and apply environmental management principles. By following this guide, businesses can develop effective environmental policies, measure and monitor environmental performance, and continuously improve their management systems to align with sustainability goals. The book covers everything from emergency preparedness to internal audits and management reviews. It also provides tools such as sample procedures for identifying environmental aspects, ensuring regulatory compliance, and controlling documented information. Each chapter is designed to help organizations not only achieve ISO 14001 certification but also foster a long-term commitment to sustainable environmental practices.

The California Privacy Rights Act (CPRA). An implementation and compliance guide

IT Governance Publishing, Preston Bukaty

This comprehensive guide to the California Privacy Rights Act (CPRA) explores its impact on businesses and consumers within California. The book begins with a clear explanation of CPRA’s territorial and material jurisdiction, providing readers with an understanding of where and how the law applies. It delves into key definitions critical for businesses and individuals alike, covering terms such as personal information, pseudonymization, and consumer rights. One of the focal points of the book is the examination of the rights granted to consumers, including the right to access, delete, and opt-out of data sales. Alongside this, it addresses the business obligations, such as the need for privacy notices and compliance with security requirements. The book also offers an analysis of penalties for non-compliance and breach notification procedures, making it an essential resource for understanding the legal landscape of consumer privacy in California. It concludes with an overview of related laws that further influence how businesses must manage customer data.