information security iso
Using Information Shield Publications for ISO/IEC 27001 Certification
White Paper Organizations seeking certification against ISO 27001 can save considerable time and effort using pre-written information security policies from Information Shield. ISPME Version 10 provides complete policy coverage for the eleven information... [13 May 2008]
The Simple Information Security Audit Process: SISAP
White Paper The SISAP (Simple Information Security Audit Process) is a dynamic security audit methodology fully compliant with the ISO 17799 and BS 7799.2, and conformant with the ISO 14508 in terms of its functionality guidelines. [13 May 2008]
Using ISO 27001 for PCI DSS Compliance
White Paper The Payment Card Industry Data Security Standard (PCI DSS) isn't dramatically different to the requirements of the best practice security standard - ISO 27001, except that PCI doesn't mention any of the prerequisites required for a management... [13 May 2008]
ISO 17799: A Structured Approach to Securing Your Corporate Data
White Paper An ISMS based on the ISO 17799:2005 standard provides the user with a structured approach to securing the corporate data. Organizations in the United States have fallen woefully behind in standardizing on a common code of practice for information... [13 May 2008]
PowerLock & ISO 17799 Standards
White Paper ISO 17799 is a comprehensive set off controls comprising best practices in information security. It's essentially an internationally recognized generic information security standard. The objective of information security policy is to provide... [23 Apr 2008]
Practical Implementation of an ISO 17799- Compliant Information Security Management System Using a Novel ASD Method
White Paper The ASD framework and its output is fully ISO/IEC17799 compliant but takes the organization's actual management systems into account, so that ISO/IEC 17799 certification is not necessarily the ultimate target if the organization so chooses. [22 Apr 2008]
Achieving Policy, Regulatory and Standards Compliance Through Implementing an ISO/IEC 27000 Series: Information Security Management System
White Paper This paper has been prepared to provide those organizations wishing to demonstrate their compliance with various policy, legal, regulatory and other chosen standards with an understanding of how that may be accomplished through the implementation... [22 Apr 2008]
The New ISO 17799:2005 - Security Policy Implications for Business
White Paper For most organizations that have already adopted the ISO/IEC 17799:2000 standard, the updated ISO 17799:2005 will impact them in several major areas. For organizations that find policy gaps in their coverage of the standard, Information Security... [22 Apr 2008]
Synergy in Security: Why a Combined ISO 17799 and OCTAVE Approach Makes Sense
White Paper The castle description of information security describes a perimeter-centric model of inside and outside. Information systems today resemble museums more than medieval castles. This doesn't apply as elnitiatives, third party support and outsourcing... [22 Apr 2008]
Applying ISO/IEC 9126-1 Quality Model to Quality Requirements Engineering on Critical Software
White Paper However, any software quality characteristic, such as security and reliability, impacts the External-System's safety. Software quality impacts the information system's behavior, and the behavior impacts the behavior of the External-System that... [12 Apr 2008]
Achieving HIPAA Security Standards Compliance by Implementing an ISO/IEC 27000 Series Information Security Management System
White Paper This paper has been prepared to provide those organizations having an interest in compliance with the US Health Insurance Portability and Accountability Act (HIPAA - 1996, revised 2003) Security Standards, especially those in the business of... [11 Apr 2008]
Box-tickers risk serious data breaches
Comment For example, ISO 27004 and 27005 dictate how you measure security and manage risk. In terms of the technical controls - the procedures to be followed by staff - the material in its sister standard ISO 27002 has much more detail on nitty-gritty... [28 Mar 2008]
A Process Centric Services Engagement Domain - Manufacturing
White Paper The solutions were dedicated BS7799 certified Security OMC, advanced correlation, trouble ticketing and visibility applications backed by L1-3 expert helpdesk, infrastructure, tools, ISO 9002 compliant ITIL based processes and on-site and remote... [23 Jan 2008]
No open door for Microsoft's Office Open XML
News The software company has already gained approval in principle from the International Organization for Standardization (ISO) but it needs INCITS approval to keep up the momentum. US government bodies were split, with the US Department for Homeland... [14 Aug 2007]
Microsoft loses key vote for Open XML
The software company has already gained approval in principle from the International Organization for Standardization (ISO), but it needs INCITS approval to keep up the momentum. US government bodies were split, with the US Department for Homeland... [13 Aug 2007]
Keep updated for stories matching information security iso via RSS
