Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

ISF good practice guide to Information Security freely available.

Information Security Forum : 16 October, 2007  (New Product)
Free standard of good practice guide to reducing information security exposures now available from the Information Security Forum website.
The Information Security Forum (ISF) has publicly launched the 2007 version of its international Standard of Good Practice for Information Security, which can be downloaded free of charge from the Information Security Forum website.

Aimed at major national and international organisations, the Standard provides a key resource for organisations committed to reducing the business risks associated with information systems. Drawing on the practical experiences of over 300 leading international organisations including many of the Fortune 100 companies, the Standard reflects the latest thinking on information security through workshops, face-to-face meetings and interviews, as well as the results of the ISF's in-depth research and its comprehensive information security benchmarking tool - the Information Security Status Survey. Building on previous versions released over the last 10 years, the 2007 version includes all the latest 'hot topics' in information security such as wireless access, endpoint security, identity management, security architecture, desktop applications, spreadsheets, portable storage devices and Voice over IP networks (VoIPs).

Complying with the Standard can help organisations conform with other information security-related standards such as ISO/IEC 27002 and COBIT v4.1, as well as addressing the information security aspects of increasing legal and regulatory requirements, such as Sarbanes-Oxley Act, Payment Card Industry Data Security Standard (PCI/DSS) and the EU Directive on Data Protection.

'All organisations face an increasing challenge to manage information security risk and meet growing legislative and corporate governance requirements,' said Kim Aarenstrup, Chairman of the ISF and Group Head of Information Security at the A.P. Moller - Maersk Group . 'By making the Standard of Good Practice freely available, our aim is to raise awareness of information security and improve policies, standards and procedures; and to help organisations undertake risk analysis, develop best practice controls and measure their effectiveness.'

The ISF's Standard of Good Practice is split into six key areas: security management, critical business applications, computer installations, networks, systems development and the end user environment. Within each section, the Standard provides key objectives and a clear overview of the practical measures and activities that need to be carried out to keep information risks under control.

The Standard of Good Practice represents just one part of the ISF's $100million investment to date in integrated research, reports, tools and advanced methodologies such as the ISF's Information Risk Analysis Methodology (IRAM) that are available to ISF Members. In addition, ISF Members can take advantage of the ISF Information Security Status Survey; a powerful benchmarking tool that enables organisations to measure the effectiveness of their information security against the Standard and other leading companies.
Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo