ISO 27001 Risk Management in Plain English

Step-by-step handbook for information security practitioners in small businesses

by Dejan Kosutic


Author and experienced information security consultant Dejan Kosutic has created this shorter book, as part of the handbook ISO pocket book series, focused solely on the issues of risk management according to ISO 27001.

This book, ISO 27001 Risk Management in Plain English, is based on an excerpt from his previous book Secure & Simple. It provides a quick read for people who are focused solely on risk management, and don’t have the time (or need) to read a comprehensive book about ISO 27001. It has one aim in mind: to give you the knowledge and practical step-by-step process you need to successfully implement ISO 27001 risk assessment and treatment – without struggle, stress, or headaches.

In the first of this series, ISO 27001 Risk Management in Plain English, you will learn:

  • What ISO 27001 requires for risk assessment and treatment
  • What are the steps in risk management
  • How to develop the risk assessment and treatment methodology
  • Which options exist for risk management according to ISO 27001
  • Which documents are required for risk management
US$ 9.90
Add to cart
Formats: PDF, MOBI and ePub – for Kindle and any smart phone including iPhone, Android, and Windows phone

Customer reviews

This book was not rated yet.

Have you read the book?

Add your review

Who is this book for?

  1. Beginners in risk assessment and treatment. This book is written primarily for beginners in this field and for people with moderate knowledge about risk assessment and treatment – no prior experience or knowledge about information security is required.
  2. ISO 27001 consultants. This book gives you the methodology on how to carry out risk management projects, helping you to gain the know-how for your future consulting engagements.
  3. Experienced information security professionals. This book brings all the knowledge you need (and additional insights) together in one comprehensive and systematic volume, helping to fill any gaps you may have.
  4. Small or mid-size companies. This book is perfect for IT administrators, information security professionals, heads of IT departments, or project managers tasked with implementing risk management in a small or mid-sized company.

Why do you need this book?

  • The only resource you need – Put simply, if you want to complete risk management projects, this book gives you everything you’ll ever need (even if you’re new to the field).
  • Written in plain English – Leaving the technical jargon to the geeks, ISO 27001 Risk Management is written for normal people in plain, simple language – meaning you can focus on getting the job done.
  • Think like a consultant – And avoid hiring one! Author and experienced ISO 27001 consultant Dejan Kosutic shares all his risk management knowledge and practical wisdom with you in one invaluable handbook.
  • Focus on risk management – Concentrate just on risk management, without getting bogged down with other information.

About the author, Dejan Kosutic

Dejan Kosutic is the author of numerous articles, video tutorials, documentation templates, webinars, and courses about business continuity and information security management. He is the author of the leading ISO 27001 & ISO 22301 Blog, and has helped various organizations including financial institutions, government agencies, and IT companies implement business continuity management according to these standards.

Holding an MBA from Henley Management College, Dejan is currently the CEO of Advisera. His ability to make the complex simple has made Dejan a sought-after expert, delivering many courses about information security, business continuity, ISO 22301 and ISO 27001 implementation.

ISO 27001 Risk Management in Plain English

Step-by-step handbook for information security practitioners in small businesses
  • ISBN: 978-953-57452-8-0
  • Language: English
  • Author: Dejan Kosutic
  • Number of pages: 62
  • Formats: PDF, MOBI and ePub – for Kindle and any smart phone including iPhone, Android, and Windows phone
US$ 9.90
Add to cart

Frequently asked questions

How will I receive the book?

As soon as the transaction is processed, you’ll receive the download link for the eBook via email. You will be able to download all three formats mentioned below, so you can use the one that suits you best.

In which formats is the book available?

ISO 27001 Risk Management in Plain English is available in electronic format (eBook) – in PDF, MOBI, and ePub. Basically, you will be able to read the book on a computer, Kindle, any smart phone (including iPhone, Android, and Windows phone), or any other device.

Is there a printed version of the book?

Currently, no, but we might publish a printed version later.

In which language is the book published?

Currently, in English only. We’re considering translating ISO 27001 Risk Management to other languages, so please do let us know if you’re interested.