controls iso
RSS controls isoSort by: Relevance | Date
Information Security Management: Understanding ISO 17799
White Paper This paper explains the benefits of ISO 17799 and the controls, processes, security organization structure, and conformance certification required. It discusses on security policies of an organization. [03 Jul 2008]
Meeting IT Requirements for Sarbanes-Oxley Section 404
White Paper IT governance frameworks such as COBIT and ISO 17799 that are used as reference standards to achieve Sarbanes-Oxley (SOX) compliance cover a broad range of objectives related to those internal controls. [03 Jul 2008]
A Versatile, On-Demand Storage Service Helps 7-Eleven Become More Agile
White Paper To ensure service excellence, EDS integrated robust hardware and software solutions with management and monitoring tools, ISO-certified operational practices and procedures, quality controls, and feedback mechanisms. [03 Jul 2008]
NIST and ISO 17799: Regulations and Security Compliance for Commercial Organizations
White Paper Generally, commercial organizations do a thorough job of applying technical security controls, but are less meticulous in developing thorough managerial and procedural controls. They also often lack the repeatable, formal auditing of these security... [03 Jul 2008]
Using ISO 27001 for PCI DSS Compliance
White Paper The Payment Card Industry Data Security Standard (PCI DSS) isn't dramatically different to the requirements of the best practice security standard - ISO 27001, except that PCI doesn't mention any of the prerequisites required for a management... [13 May 2008]
Using Information Shield Publications for ISO/IEC 27001 Certification
White Paper Organizations seeking certification against ISO 27001 can save considerable time and effort using pre-written information security policies from Information Shield. ISPME Version 10 provides complete policy coverage for the eleven information... [13 May 2008]
PowerLock & ISO 17799 Standards
White Paper ISO 17799 is a comprehensive set off controls comprising best practices in information security. It's essentially an internationally recognized generic information security standard. In this paper, PowerTech describes how its tools and applications... [23 Apr 2008]
The New ISO 17799:2005 - Security Policy Implications for Business
White Paper For most organizations that have already adopted the ISO/IEC 17799:2000 standard, the updated ISO 17799:2005 will impact them in several major areas. Organizations should do a gap-analysis between their current policies and these new controls... [22 Apr 2008]
Achieving Policy, Regulatory and Standards Compliance Through Implementing an ISO/IEC 27000 Series: Information Security Management System
White Paper In doing so the owner organization will build into their ISMS the specific controls and review processes to achieve and to be able to demonstrate their required compliance. This paper has been prepared to provide those organizations wishing to... [22 Apr 2008]
Vendors hype up compliance fears
Comment Stuart Okin, associate partner at Accenture, says, "A lot of people turn to the ISO standards, and some of the detailed security standards around encryption, to support them. Generally, taking a risk-based approach and using the ISO 27000 standards... [08 Apr 2008]
Box-tickers risk serious data breaches
Comment In terms of the technical controls - the procedures to be followed by staff - the material in its sister standard ISO 27002 has much more detail on nitty-gritty stuff," Cole says. ISO 27001 is a standard on how to set up a management system," Cole... [28 Mar 2008]
Optimizing Your IT Controls Environment for Compliance with Multiple Regulations
White Paper The small subset of regulations and standards covered in this white paper include CobiT, HIPAA, ISO 17799:2005, ITIL, the PCI Data Security Standard, and Sarbanes-Oxley (SOX). This IDC white paper focuses on the compelling need for today's... [12 Dec 2007]
IT and compliance: A risk management 'odd couple'
Comment ISO 17799 (expected to be renamed ISO 27002 this year) provides a set of best practices for security, in areas including compliance. ISO 27001 is a certification standard to ensure that they’ve got it right. [02 Jul 2007]
Leading Forest Products Company Streamlines Processes and Reduces Operational Costs
White Paper One of Tembec's leading paper sites, Spruce Falls, was one of the first forestry producers to become certified to the ISO 14001 standard through external audits of its Environmental Management System (EMS), which puts controls on business... [31 Oct 2006]
Information Security Management Best Practice Based on ISO/IEC 17799
White Paper This paper introduces various best practices for implementing security controls, lists the 10 security domains of ISO/IEC 17799, describes the benefits of implementing ISO/IEC 17799 and talks about security trends. [20 Apr 2006]
