ISO security standards as leverage on IT Security Management

Information security is a very important component to an organization’s dependence on ICT. The operational environment where these technologies are operating is a very complex environment. Offering a good level of protection by information security process needs a well defined managerial framework. This paper discusses the reasons why having a well defined managerial security framework is needed in an information security area, which are the tools to build and perform such a management framework. After a short presentation two international standards related to Information Security Management, ISO 17799:2005 and ISO 27001 standards, the implications of being conform to these standards are analysed and their advantages and limits in a security management framework are pointed out.

Published in: on 11/04/2010 at 15:49  Leave a Comment  

The URI to TrackBack this entry is:

RSS feed for comments on this post.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: