Adarsh Nair is the author of Mastering Information Security Compliance Management we got the chance to sit down with him and find out more about his experience of writing with Packt.
Q: How did you become an author for Packt? Tell us about your journey. What was your motivation for writing this book?
Adarsh: My journey as an author for Packt began when the Packt team approached us. I was glad to be able to contribute my knowledge via this project. Moreover, the scarcity of comprehensive books in the market focusing on the latest version of ISO 27001 further motivated me to take on this endeavor.
Q: What is the name of your book?
Adarsh: Mastering Information Security Compliance Management.
Q: What kind of research did you do, and how long did you spend researching before beginning the book?
Adarsh: I spent approximately 3 months researching before starting the book. This involved analyzing the ISO/IEC 27001:2022 standard, talking to professionals in the field, and reading other publications on the topic.
Q: What key takeaways do you want readers to come away with from the book?
Adarsh: The readers will get a solid understanding of the core principles of information security, the practical interpretation of ISO/IEC 27001/27002:2022 standards, risk management strategies, and techniques to conduct an effective audit.
Q: Can you share any blogs, websites and forums to help readers gain a holistic view of the tech they are learning?
Adarsh: Some excellent resources are the official ISO website, cybersecurity forums like InfoSec online, and blogs like Krebs on Security and Schneier on Security, white papers published by companies like IBM, Gartner, CrowdStrike, etc.
Q. Did you face any challenges during the writing process? How did you overcome them?
Adarsh: Conveying the concepts processes clearly in an understandable language, step by step. Creating a coherent structure that would guide the reader through the content without confusion was also a considerable task. These challenges were overcome by multiple revisions, obtaining feedback from experts in the field, trying to put myself in the reader’s shoes, and carefully mapping out each process to ensure that every step was laid out in an accessible way.
Q. How would you describe your author journey with Packt? Would you recommend Packt to aspiring authors?
Adarsh: It has been an enriching experience with Packt. Their editorial team was supportive, and the process was well structured. I would certainly recommend Packt to aspiring authors..
Q. Why should readers choose this book over others already on the market? How would you differentiate your book from its competition?
Adarsh: This book is based on the latest 2022 revision of the ISO/IEC 27001 standard. It presents an easy-to-understand, comprehensive guide on ISO 27001 compliance management which sets it apart from other books in the market.
Q. What is/are your specialist tech area(s)?
Adarsh: Information Security and business continuity auditing and compliance, risk management, data privacy, technical vulnerability management and ethical hacking, cyber forensics, cybercrimes and cyber laws.
Q. What advice would you give to readers jumping into this technology? Do you have any top tips?
Adarsh: A learning and growth mindset clubbed with participation in online forums, webinars, and engaging with the tech community.
Q. What’s your take on the technologies discussed in the book? Where do you see these technologies heading in the future?
Adarsh: Since the book talks about ISO standards, I would explain on that – ISO/IEC 27001:2022 is a crucial standard in the current digital age where data security is of utmost importance. As we continue to generate vast amounts of data, the role of standards like ISO/IEC 27001:2022 in safeguarding that information will become even more critical.
Q. How did you organize, plan, and prioritize your work and write the book?
Adarsh: I began with a clear outline of the book. Breaking down each chapter into smaller sections and setting deadlines for each helped me manage my time and ensure steady progress.
Q. What are your favorite tech journals? How do you keep yourself up to date on tech?
Adarsh: I do not follow any particular journal but explore ones like Journal of Information Security and Applications, IEEE Security & Privacy, and ACM Transactions on Information and System Security.
Q. Would you like to share your social handles? If so, mention them below.
Adarsh: Sure. Here you go:
My blog: https://adarshnair.com/
Q: What is that one writing tip that you found most crucial and would like to share with aspiring authors?
Adarsh: Make your content for the reader. Use real-world examples to explain complex concepts and keep your language simple and clear. I have used various practical case studies to explain the concepts in this book.
You can find Adarsh’s book on Amazon by following this link: Please click here