Cesare Gallotti, consultancy on information security, data protection, quality, IT Service Management, Business Continuity, Privacy

Cesare Gallotti, Lead Auditor 27001, Lead Auditor 20000, Lead Auditor 9001

Cesare Gallotti Home
Cesare Gallotti

Information security - 2022 edition 

Risk management
Management systems
The ISO/IEC 27001:2022 standard
The ISO/IEC 27002:2022 controls

Format: e-book (epub, kindle, mobi, pdf and others) and hardcopy. 
Year: 2022. 
ISBN: 9791220888851 (e-book in English) and 9791220388474 (hardcopy in English).

The book is on all on-line bookshops, usually in epub, kindle, mobi and other formats.

The publishers (self-publishing platforms) are: Streetlib(https://store.streetlib.com/) for the e-book (here you can also find the pdf in A4) and Youcanprint www.youcanprint.it for the hardcopy.


In this book, the following subjects are included: information security, the risk assessment and treatment processes (with practical examples), the information security controls.

The text is based on the 2022 editions of the ISO/IEC 27001 and the ISO/IEC 27002 standards. The author is a participant to the editing meetings for such standards.

Appendixes include short presentations on auditor managmeent, on ISO/IEC 27001 certifications, on Common Criteria and FIPS 140 (updated in 2022) and check lists for change management, contracts and for the transition from the 2013 to the 2022 controls.

A preview is available.

Cesare Gallotti - Ripa di Porta Ticinese 75 - 20143 Milano - P. IVA 06342760961