Information Security Auditor (bcs Guides To It Roles)
Tags:
Wendy Goucher
Identifying security gaps in an organisation's information systems is a first and vital step in protecting data and information. This is what makes the role of an information security (or assurance) auditor so important. However, this is a role that is often maligned as a 'check list monkey' who adds nothing to the business. This practical book confronts this stereotype and gives an excellent introduction to the role, covering areas such as purpose, required skills, responsibilities, interface and career progression as well as tools, standards and frameworks related to the role. Based on the author's extensive experience, it gives practical guidance to those new to the role or ted in developing a better understanding of what it entails. "A refreshingly good book - easy to read with excellent guidance for both budding auditors and auditees. Wendy's outline of a model Information Security Auditor outlines both the technical and personal skills required to succeed and it is her attention to the personal skill sets that is unique in this book." - Vernon Poole, CISM, CGEIT & CRISC - Head of Business Consultancy, Sapphire
