The Definitive Guide to the C&A Transformation provides an authoritative guide to authorization for persons with knowledge of information systems and/or information systems security, but not necessarily the same level of expertise withcertification and accreditation (C&A) standards and best practices;it points to references for further knowledge. It is scoped to present the information needed to meaningfully recognize, implement, and manage authorization requirements and achieve compliance with federal, local and agency laws and policies.

In this category you will find both e-learning courses and official manuals covering the EC-Council's various qualifications. Qualifications covered include CEH, ENSA, Security5 and many, many more.

The books in this category cover the many information security aspects of hacking that information security professionals need to be aware of.  Topics covered include ethical hacking (penetration testing), prevent hack attack, blackjacking and many others.

Several collections of well known books have now been made available on CD-ROM in .PDF format. In this category you will find some of the top-selling books on information and computer security that have for the first time been made available in .PDF format on CD-ROM.  

Here you can buy essential books, market-leading toolkits and Pocket Guides on the International Information Security standards series ISO/IEC 27000. Available titles include IT Governance: a Manager's Guide to Data Security and ISO27001/ISO27002, and International IT Governance: An Executive Guide to ISO 17799/ISO 27001.

With the growing importance of Payment Card Industry (PCI) more and more organisations are deploying the specialist toolkits found here - and are using our e-learning and classroom training courses to ensure compliance readiness.

In this category you will find books covering the physical and environmental aspects of information security. The books in this category will help you ensure you have a secure perimeter - providing a firm base for you to base your information security management measures on.

Security Architecture is a process which organisations can use to express, design and describe the current/future structure and behaviour of security processes, information security systems, personnel etc. Here we offer a range of the leading books covering SABSA®, Security Architecture and Security Design.

Here you will find books and pocket guides on IT-related law and compliance issues. Increasingly complex, increasingly important - understanding IT law and regulatory compliance is essential for today's business executive. 

Security metrics is the systematic application of quantitative, statistical, and/or mathematical analyses to measuring security functional trends and workload. In plain-English, tracking what each function is doing in terms of level of effort (LOE), costs, and productivity.  The books in this provide metrics and worked examples of metrics which aid with the implementation of a security metrics programme or framework.