IT GRC Forum

FacebookJoin our Linkedin Group!Follow us on Twitter!Subscribe to our Feeds!
Click on the slide!

Realizing SecureData Potential

Live Webcast!             Join us as we discuss how to realize effective data security across an enterprise.

Click on the slide!

Enabling Risk Based IT Gov

On-Demand               Play now for the key concepts and challenges with IT governance.

Click on the slide!

A Breach Prevention Plan

On-Demand               Play now to gain insights and some key steps to prevent payment card…

Click on the slide!

Best Practices for eGRC

On-Demand               Play now and learn how to implement best practices for eGRC.

Frontpage Slideshow (version 2.0.0) - Copyright © 2006-2008 by JoomlaWorks
E-mail

Leading groups launch first set of information security principles

15 December 2010 - Three leading global security organisations have launched the first information security principles designed to promote good practice in information security. The Information Security Forum (ISF), the International Information Systems Security Certification Consortium (ISC)2 and ISACA have developed 12 independent, non-proprietary principles that will help security practitioners respond more effectively in today's complex, interconnected world. 

The emerging role of information security in improved governance, regulatory compliance and risk assessment has prompted the need for clear, relevant guidelines. The principles will help individuals support business objectives, manage their organizational risk and promote responsible security behavior.

"There are other standards and frameworks around like SOGP, COBIT and ISO27002, which are all aimed at organisations, but we were clear that we wanted these principles to be unique, practical and more like a code of conduct for individuals to adopt," said Jason Creasey, Global Alliances Leader, ISF. 

While information security has been added to many corporate agendas, the entire business—not just security practitioners—should be vigilant and responsive.

"The security profession has to break away from its roots as an IT-focused discipline. These principles are accessible to everyone working in information security whatever their qualification or affiliation. Security professionals and their stakeholders now have a common framework for truly risk-based security management that all will be able to identify with," said John Colley, CISSP, Managing Director, EMEA, (ISC)2.

According to Manuel Aceves, CISA, CISM, CGEIT, CRISC, CISSP, FCITSM, member of ISACA's Professional Standards Committee, "Because information security has become such an important business function, it is critical for information security professionals to develop sound business skills in addition to technical skills and knowledge. The information security principles provide a guide to help those in the security profession add value to their organisations by successfully supporting the business and promoting good practices. They also are a good complement to ISACA's Business Model for Information Security (BMIS), which provides a breakthrough approach for describing the information security ecosystem and a common language for information security and business management to improve information protection." 

Available as a poster and downloadable from the ISF, (ISC)² and ISACA websites (www.isaca.org/security-principles), the principles are aimed at individuals working in information security, including those who develop, supply and manage security systems; influence legal or regulatory requirements for security; and educate tomorrow's workforce. They have three categories—support the business, defend the business, and promote responsible security behaviour.

Available for free download at www.isaca.org/security-principles

Trackback(0)
Comments (0)add comment

Write comment

busy
 

pornocoelho pornocobra pornozebra sexocangrejo pornobanan pornocanguru pornoelefante sexocisne pornogazela sexochacal sexomarsopa



air max pas cher nike air max pas cher air max pas cher nike air max pas cher air max pas cher nike air max pas cher air max pas cher nike air max pas cher air max pas cher nike air max pas cher air max pas cher air max pas cher air max 90 pas cher nike air max pas cher air max pas cher nike tn pas cher nike air max pas cher nike tn nike tn pas cher tn pas cher louboutin pas cher chaussure louboutin pas cher louboutin soldes air max pas cher air max pas cher nike air max pas cher doudoune moncler pas cher doudoune moncler barbour paris barbour paris pas cher hogan outlet hogan outlet online scarpe hogan outlet tiffany outlet tiffany outlet italia air jordan air jordan pas cher jordan pas cher air jordan site officiel