Information Security Management
Information is now globally accepted as being a vital asset for most organizations and businesses. As such, it is essential that you ensure the confidentiality, integrity, and availability of both vital corporate information and customer information. ISO 17799 (also known as BS7799) is intended to assist with this task.
What Is ISO 17799?
ISO 17799 is organized into 10 sections:
Security policy; Organization of assets and resources; Asset classification and control;
Personnel security; Physical and environmental security; Communications and operations management; Access control; Systems development and maintenance; Business continuity management; Compliance. Each section contains the actual clauses and controls that comprise the standard.
WHERE TO OBTAIN THE STANDARD
ISO 17799 can be obtained individually, or as part of the ISO17799 Toolkit:
The stand alone version can be bought in download form from this BS7799 and ISO 17799 Download Site
The ISO17799 Toolkit includes the ISO 17799 standard (both parts), a set of compliant security policies, a road map for certification, a number of audit checklists, a presentation and various other materials. It can be ordered and downloaded for a cost of USD 995.
SUPPORTING TOOLS & PRODUCTS
The ISO17799 Toolkit itself does in fact include a significant number of requisite support elements. This is quite useful, because as the ISO17799 standard is relatively young, there is not an abundance of other tools and products specifically designed to support it. Of those that do exist, the leading player is COBRA, which combines ISO17799 compliance management with risk analysis (which itself is mandated by the standard).
IF YOU NEED
A STANDARD THEN VISIT US AT