Ensuring Quality to Gain Access to Global Markets


Book Description

In a modern world with rapidly growing international trade, countries compete less based on the availability of natural resources, geographical advantages, and lower labor costs and more on factors related to firms' ability to enter and compete in new markets. One such factor is the ability to demonstrate the quality and safety of goods and services expected by consumers and confirm compliance with international standards. To assure such compliance, a sound quality infrastructure (QI) ecosystem is essential. Jointly developed by the World Bank Group and the National Metrology Institute of Germany, this guide is designed to help development partners and governments analyze a country's quality infrastructure ecosystems and provide recommendations to design and implement reforms and enhance the capacity of their QI institutions.




Implementing ISO/IEC 20000 Certification: The Roadmap


Book Description

ISO/IEC 20000 is the corporate standard for achieving quality within IT Service Management. As individuals achieve success in Service Management frameworks such as ITIL®, many organizations have identified the benefits of making the jump to full corporate accreditation. But, having made the decision to invest in this standard, what is the best way to implement adoption in an efficient and successful way? This thorough, practical guide has been put together by real experts with real experience of how ISO/IEC 20000 works in the workplace and in the real world. Part A of this title covers the step by step description of the ISO 20000 implementation process. Part B contains real case studies from organizations who have successfully achieved ISO/IEC accreditation. This Official itSMF guide is unique in that it not only describes the implementation process. It also suggests solutions to common problems and set-backs. An understanding of the many business pressures means that practical guidance on the business case, measuring success (or not), or the need for quick wins are all included in this book, making it an invaluable companion for all those working on an implementation project. A sister guide to the hugely successful Official itSMF Introduction to ISO/IEC 20000 book, readers will find that this book becomes a key asset in delivering a practical, down to earth implementation program. Foreword by John Stewart of OGC.




Quality Systems and Standards for a Competitive Edge


Book Description

This book responds to the challenge of providing a comprehensive account of quality systems for private sector development: what works and what doesnt on the ground, and why. This volume provides a thorough analysis of the diversity of institutions, linkages, and arrangements involved in quality systems, identifying success factors in countries quality strategies. It explains why quality and standards matter for export growth, for productivity, for industrial upgrading, and for diffusion of innovation, all central ingredients in improving economic growth and generating real gains in poverty reduction. It provides a detailed blue print for implementing effective National Quality Systems. Quality and Standards Matter is a valuable tool for policymakers confronted with the challenges of building trade competitiveness in the new global economy.




Implementing the ISO/IEC 27001:2013 ISMS Standard


Book Description

Authored by an internationally recognized expert in the field, this expanded, timely second edition addresses all the critical information security management issues needed to help businesses protect their valuable assets. Professionals learn how to manage business risks, governance and compliance. This updated resource provides a clear guide to ISO/IEC 27000 security standards and their implementation, focusing on the recent ISO/IEC 27001. Moreover, readers are presented with practical and logical information on standard accreditation and certification. From information security management system (ISMS) business context, operations, and risk, to leadership and support, this invaluable book is your one-stop resource on the ISO/IEC 27000 series of standards.







CISA Certified Information Systems Auditor Study Guide


Book Description

The ultimate CISA prep guide, with practice exams Sybex's CISA: Certified Information Systems Auditor Study Guide, Fourth Edition is the newest edition of industry-leading study guide for the Certified Information System Auditor exam, fully updated to align with the latest ISACA standards and changes in IS auditing. This new edition provides complete guidance toward all content areas, tasks, and knowledge areas of the exam and is illustrated with real-world examples. All CISA terminology has been revised to reflect the most recent interpretations, including 73 definition and nomenclature changes. Each chapter summary highlights the most important topics on which you'll be tested, and review questions help you gauge your understanding of the material. You also get access to electronic flashcards, practice exams, and the Sybex test engine for comprehensively thorough preparation. For those who audit, control, monitor, and assess enterprise IT and business systems, the CISA certification signals knowledge, skills, experience, and credibility that delivers value to a business. This study guide gives you the advantage of detailed explanations from a real-world perspective, so you can go into the exam fully prepared. Discover how much you already know by beginning with an assessment test Understand all content, knowledge, and tasks covered by the CISA exam Get more in-depths explanation and demonstrations with an all-new training video Test your knowledge with the electronic test engine, flashcards, review questions, and more The CISA certification has been a globally accepted standard of achievement among information systems audit, control, and security professionals since 1978. If you're looking to acquire one of the top IS security credentials, CISA is the comprehensive study guide you need.




The Basics of IT Audit


Book Description

The Basics of IT Audit: Purposes, Processes, and Practical Information provides you with a thorough, yet concise overview of IT auditing. Packed with specific examples, this book gives insight into the auditing process and explains regulations and standards such as the ISO-27000, series program, CoBIT, ITIL, Sarbanes-Oxley, and HIPPA. IT auditing occurs in some form in virtually every organization, private or public, large or small. The large number and wide variety of laws, regulations, policies, and industry standards that call for IT auditing make it hard for organizations to consistently and effectively prepare for, conduct, and respond to the results of audits, or to comply with audit requirements. This guide provides you with all the necessary information if you're preparing for an IT audit, participating in an IT audit or responding to an IT audit. - Provides a concise treatment of IT auditing, allowing you to prepare for, participate in, and respond to the results - Discusses the pros and cons of doing internal and external IT audits, including the benefits and potential drawbacks of each - Covers the basics of complex regulations and standards, such as Sarbanes-Oxley, SEC (public companies), HIPAA, and FFIEC - Includes most methods and frameworks, including GAAS, COSO, COBIT, ITIL, ISO (27000), and FISCAM




Software Quality


Book Description

The book presents a comprehensive discussion on software quality issues and software quality assurance (SQA) principles and practices, and lays special emphasis on implementing and managing SQA. Primarily designed to serve three audiences; universities and college students, vocational training participants, and software engineers and software development managers, the book may be applicable to all personnel engaged in a software projects Features: A broad view of SQA. The book delves into SQA issues, going beyond the classic boundaries of custom-made software development to also cover in-house software development, subcontractors, and readymade software. An up-to-date wide-range coverage of SQA and SQA related topics. Providing comprehensive coverage on multifarious SQA subjects, including topics, hardly explored till in SQA texts. A systematic presentation of the SQA function and its tasks: establishing the SQA processes, planning, coordinating, follow-up, review and evaluation of SQA processes. Focus on SQA implementation issues. Specialized chapter sections, examples, implementation tips, and topics for discussion. Pedagogical support: Each chapter includes a real-life mini case study, examples, a summary, selected bibliography, review questions and topics for discussion. The book is also supported by an Instructor’s Guide.




Safety Critical Systems Handbook


Book Description

Safety Critical Systems Handbook: A Straightfoward Guide to Functional Safety, IEC 61508 (2010 Edition) and Related Standards, Including Process IEC 61511 and Machinery IEC 62061 AND ISO 13849, Third Edition, offers a practical guide to the functional safety standard IEC 61508. The book is organized into three parts. Part A discusses the concept of functional safety and the need to express targets by means of safety integrity levels. It places functional safety in context, along with risk assessment, likelihood of fatality, and the cost of conformance. It also explains the life-cycle approach, together with the basic outline of IEC 61508 (known as BS EN 61508 in the UK). Part B discusses functional safety standards for the process, oil, and gas industries; the machinery sector; and other industries such as rail, automotive, avionics, and medical electrical equipment. Part C presents case studies in the form of exercises and examples. These studies cover SIL targeting for a pressure let-down system, burner control system assessment, SIL targeting, a hypothetical proposal for a rail-train braking system, and hydroelectric dam and tidal gates. - The only comprehensive guide to IEC 61508, updated to cover the 2010 amendments, that will ensure engineers are compliant with the latest process safety systems design and operation standards - Helps readers understand the process required to apply safety critical systems standards - Real-world approach helps users to interpret the standard, with case studies and best practice design examples throughout