SEARCH RESULTS
 
Showing 1-6 of 6 records
1
 
Expand article

RSA Impressions - 2: Compliance "Megatrends"

2008-04-08 17:47:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...ISO27001 is hot. Really? A lot of people in the audience seemed to like ISO27001. So, is it enough to predict its takeoff in the US? Somehow I am still skeptical GRC was mentioned... in passing. Everybody heard about it - and nobody cared. One person said "GRC... hmmm... so, how do you know you have it One more person said that "plausible...
 
Tags: security, information security, change security, data change, data, panel, bus107 panel session, pci dss standard, data volume
 
 
 
 
Expand article

Top infosec risks for 2008

2007-12-30 16:07:53 by Editor in Security Links
 
From CISSP forum We have completed and published our collaborative white paper listing the top information security threats, vulnerabilities and impacts, along with some risk scenarios and controls, as we head towards the new year http://www.iso27001 security. com/Top informat ion security risks for 2008.pdf
 
Tags: collaborative white paper, iso27001 security, cissp forum, risk scenarios, head, pdf, impacts, vulnerabilities, controls
 
 
 
 
Expand article

The Moo Security through Sacredness

The Article has images
2007-08-29 04:30:13 by RaviC in Musings on Information Security
...ISO27001, COBIT which are well respected and considered sacred in the security domain. By conformance of security function to such standards we can not only create a perception of "sacredness" for the security program but also communicate value of the program easily through the standard's framework
 
Tags: cow, cow roams, security function, dried dung cake, secure animal, dung, animal, india, secure
 
 
 
 
Expand article

Sexing up the logs

2008-04-03 04:00:00 by Stuart King in Stuart King's Security and Risk Management Blog
 
...ISO27001 states: Audit logs recording user activities, exceptions, and information security events shall be produced and kept for an agreed period to assist in future investigations and access control monitoring . The importance of keeping logs is also called out in Basel II, SOX, and so on. For anything you want to know about logs there's...
 
Tags: logs, logs enables, security event logs, security, review logs, perform security functions, log, log output, information security events
 
 
 
 
Expand article

How Do I Get ISO27001 Certification?

2008-05-20 17:31:23 by Posted By: Carsten Casper, Research Director in IT Leaders - Security and Risk Management
 
...iso27001certificates.com ). There, you'll find a list of certified companies and the corresponding body that issued the certificate No matter which entry point you choose, the list of auditors, the list of certifying organizations or the list of issued certificates - the names that come up are often the same: BSI Management Systems, one of...
 
Tags: certification body, body, register, international register, body schedules, list, international standard iso, tv companies, iso
 
 
 
 
Expand article

What Are You Managing Towards? (And On Disproving Risk Management)

The Article has images
2008-06-03 14:41:11 by Alex in RiskAnalys.is
...ISO27001 mailing list asking How can I get management to fund ISO 27001 certification? Of course, the value of implementing the ISMS and the value of certification are two separate business propositions, but if you cant sell the first, then are those efforts really good risk management? You know, the kind of effort that we can use to make...
 
Tags: management, risk management, term risk management, management focuses, management approach, risk management process, patch management, cost management, upper management
 
 
 
 
 
Showing 1-6 of 6 records
1
 
TOP SEARCH
Expand / MinimizeClose Widget
  •  
RECENT SEARCH
Expand / Minimize
  •  
RELATED VIDEO
Expand / Minimize
SecurityRatty FAQ
Sergey Zarubin, 31yo
CISSP, CCSP
Moscow, Russia