Search icon CANCEL
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Conferences
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Cybersecurity and Privacy Law Handbook

You're reading from   Cybersecurity and Privacy Law Handbook A beginner's guide to dealing with privacy and security while keeping hackers at bay

Arrow left icon
Product type Paperback
Published in Dec 2022
Publisher Packt
ISBN-13 9781803242415
Length 230 pages
Edition 1st Edition
Languages
Arrow right icon
Author (1):
Arrow left icon
Walter Rocchi Walter Rocchi
Author Profile Icon Walter Rocchi
Walter Rocchi
Arrow right icon
View More author details
Toc

Table of Contents (18) Chapters Close

Preface 1. Part 1: Start From the Basics
2. Chapter 1: ISO27001 – Definitions and Security Concepts FREE CHAPTER 3. Part 2: Into the Wild
4. Chapter 2: Mandatory Requirements 5. Chapter 3: Data Protection 6. Chapter 4: Data Processing 7. Chapter 5: Security Planning and Risk Management 8. Part 3: Escape from Chaos
9. Chapter 6: Define ISO 27001 Mandatory Requirements 10. Chapter 7: Risk Management, Controls, and Policies 11. Chapter 8: Preparing Policies and Procedures to Avoid Internal Risk 12. Chapter 9: Social Engineering, Password Guidance, and Policy 13. Chapter 10: The Cloud 14. Chapter 11: What about the US? 15. Index 16. Other Books You May Enjoy Appendix

Risk Management, Controls, and Policies

One of the most important things to sort out, aside from preparing all the documentation needed and confirming support from management, is to have a list of all the entity’s assets. In this chapter, we will be covering risk management, data classification, and the controls defined within ISO 27001.

An asset is a resource having economic worth that a person, business, or nation owns or manages with the idea that it will produce future benefits. The balance sheet of a firm lists its assets. They are acquired or established to raise the value of a company or to boost its operations. In our context, an asset is defined as any goods or services, tangible or intangible, that are considered part of an entity.

So a firewall, for instance, is an asset; a pen is an asset; but also the documents on the local or online repository of the company are considered to be an asset, as well as that server that they were supposed to dismiss five years...

lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime