Previous
ISO 17799: Pay Attention To This One
White Papers While not perfect, ISO 17799 is emerging as the standard of choice because it overcomes many of the critical deficiencies of SAS 70. Nevertheless, if compliance rather than certification is one's goal, ISO 17799 will serve as a sound security...
[April 23, 2008, 0:00]
ISO 17799: A Structured Approach To Securing Your Corporate Data
White Papers An ISMS based on the ISO 17799:2005 standard provides the user with a structured approach to securing the corporate data. Organizations in the United States have fallen woefully behind in standardizing on a common code of practice for information...
[April 22, 2008, 0:00]
The New ISO 17799:2005 - Security Policy Implications For Business
White Papers For most organizations that have already adopted the ISO/IEC 17799:2000 standard, the updated ISO 17799:2005 will impact them in several major areas. While there were many changes in naming and organization, the 2005 standard did introduce several...
[April 22, 2008, 0:00]
Practical Implementation Of An ISO 17799- Compliant Information Security Management System Using A Novel ASD Method
White Papers The ASD framework and its output is fully ISO/IEC17799 compliant but takes the organization's actual management systems into account, so that ISO/IEC 17799 certification is not necessarily the ultimate target if the organization so chooses.
[April 22, 2008, 0:00]
Aligning CobiT, ITIL And ISO 17799 For Business Benefit: Management Summary
White Papers The paper is the result of a joint study initiated by the UK government's Office of Government Commerce and the IT Governance Institute in response to the growing significance of best practices to the IT industry and the need for senior business...
[March 14, 2006, 23:00]
Synergy In Security: Why A Combined ISO 17799 And OCTAVE Approach Makes Sense
White Papers Information systems today resemble museums more than medieval castles. The castle description of information security describes a perimeter-centric model of inside and outside. This doesn't apply as elnitiatives, third party support and outsourcing...
[April 22, 2008, 0:00]
PowerLock & ISO 17799 Standards
White Papers ISO 17799 is a comprehensive set off controls comprising best practices in information security. It's essentially an internationally recognized generic information security standard. In this paper, PowerTech describes how its tools and applications...
[April 23, 2008, 0:00]
Control Framework Misconceptions
White Papers ITIL and ISO 17799 are excellent sources of practice information, but they are not control frameworks. Use COBIT as the control framework reference and then leverage ITIL and ISO 17799 for process improvement.
[March 20, 2006, 23:00]
The Simple Information Security Audit Process: SISAP
White Papers The SISAP (Simple Information Security Audit Process) is a dynamic security audit methodology fully compliant with the ISO 17799 and BS 7799.2, and conformant with the ISO 14508 in terms of its functionality guidelines.
[April 22, 2008, 0:00]
Delivering Best Practices For Complex IT Environments
White Papers The leading standards in this area are ITIL, BS15000 and ISO 17799, the global best practice standard for securing business information. CA solutions offer the flexibility to help organizations implement ITIL, BS15000 and ISO 17799 practices to...
[October 19, 2004, 0:00]
Computer Associates: Delivering Best Practices For Complex IT Environments
White Papers The leading standards in this area are the Information Technology Infrastructure Library (ITIL); British Standard (BS15000); the emerging standard for IT service management which is based on ITIL methodologies; and ISO 17799, the global best...
[December 5, 2003, 23:00]
Insider Warns Of Storage Industry Security Flaws
News I'm stunned by how many storage vendors don't comply with all the elements of ISO standards," said Hibbard. If you ask a storage guy if his products and practices comply with ISO 17799 he'll look at you like you're speaking a different language.
[September 8, 2006, 15:35]
Industry Maps Out Security Blueprint For Business
News The work began in 1990 under the name GASSP (Generally Accepted System Security Principles), and draws on other work including IS 17799, the standard for a security code of practice from the International Organization for Standardization (ISO...
[April 17, 2003, 9:54]
Using Information Shield Publications For ISO/IEC 27001 Certification
White Papers Organizations seeking certification against ISO 27001 can save considerable time and effort using pre-written information security policies from Information Shield. ISPME Version 10 provides complete policy coverage for the eleven information...
[April 22, 2008, 0:00]
RiskWatch For Financial Institutions Software Measures Compliance With Gramm Leach Bliley And Includes A Complete Risk Analysis
White Papers Organizations have been increasingly affected by new regulations and standards such as the Gramm Leach Bliley Act, the Federal Financial Institutions Examination Council and ISO 17799 as a standard for Information Systems risk assessment, and...
[August 6, 2007, 0:00]
Meeting IT Requirements For Sarbanes-Oxley Section 404
White Papers IT governance frameworks such as COBIT and ISO 17799 that are used as reference standards to achieve Sarbanes-Oxley (SOX) compliance cover a broad range of objectives related to those internal controls.
[March 23, 2005, 23:00]
Net Report Sarbanes-Oxley IT Compliance White Paper
White Papers COSO, CoBiT, ISO/IEC 17799. Lastly the paper will present Net Report's Internal IT Control Compliance Solution which meet the requirements of Sarbanes-Oxley Sections 103(a)(2)(iii), 302, 404, 409, 802 and 1102 along with related standards and...
[October 26, 2006, 0:00]
SAGEPOT: A Tool For Security Assessment And Generation Of Policy Templates
White Papers The assessment of security is based on the areas identified in the ISO 17799 standard. Security is becoming an increasingly critical aspect guaranteeing the survivability of systems and the trustworthiness of the organizations owning them.
[April 22, 2008, 0:00]
Moving To An Effective, Efficient, And Sustainable Information Security Management System Based On The ISO 27001 International Standard
White Papers This paper explains how such an approach is achievable by establishing it on the secure foundation of the ISO 17799 and ISO 27001 international standards. In the rush to meet regulatory or customer mandates, organizations have spent millions of...
[July 6, 2007, 0:00]
Best Practices For Managing IT Risk And Compliance
White Papers The webcast also explores straight-forward and cost-effective practices that will enable a person to comply and get back to business by mapping the network to control frameworks such as CobiT and ISO/IEC 17799.
[August 4, 2006, 0:00]
