The development of IT governance - which recognizes the convergence between business practice and IT management - makes it essential for managers at all levels, and in organizations of all sizes, to understand how best to deal with information security and cyber risk. The fifth edition includes chapters on: information security policy and scope; controls against malicious software; e-commerce services and PCI DSS; e-mail, internet use and social media governance; network access controls and hacking attacks; mobile security controls; business continuity management; the ISO27001 audit. The new edition has been fully updated to take account of the latest regulatory and technological developments, including the creation of the International Board for IT Governance Qualifications. IT Governance also includes new material on key markets - including the UK and the US, Australia and South Africa.