Quality News » 17799 http://quality-news.com News about ISO standards and Quality Management Mon, 01 Feb 2010 15:36:59 +0000 http://wordpress.org/?v=2.9.2 en hourly 1 overview of information security management systems http://quality-news.com/157/overview-of-information-security-management-systems/ http://quality-news.com/157/overview-of-information-security-management-systems/#comments Sun, 07 Jun 2009 19:35:54 +0000 QualityGuru http://quality-news.com/?p=157 Infromation security

Infromation security

With more and more organizations implementing information security management systems (ISMS) as part of their risk management strategy, the publication of a new ISO/IEC standard giving an overview of ISMS is particularly timely.

Information securityISO/IEC 27000:2009, Information technology – Security techniques – Information security management systems – Overview and vocabulary, will assist organizations of all types to understand the fundamentals, principles and concepts to improve protection of their information assets.



Applicable to all types and sizes of organization (e.g. commercial enterprises, government agencies, non-profit organizations), ISO/IEC 27000:2009 supplements the ISO/IEC 27000 family of standards by providing an introduction to information security management and defining related terms.

Today, an organization’s information assets are dependent upon information and communications technology. The technology assists in facilitating the creation, processing, storing, transmitting, protection and destruction of information.

As the extent of the interconnected global business environment expands, so does the requirement to protect information as it is exposed to a wider variety of threats and vulnerabilities.



Edward Humphreys, convenor of the working group, which developed the standard, comments: “Standardized security techniques are becoming mandatory requirements for e-commerce, health-care, telecoms, automotive and many other application areas in both the commercial and government sectors. ISO/IEC 27000:2009, together with the other ISO/IEC 27000 family of standards, aims to assist organizations more effectively achieve an appropriate level of information security.”

red full story here

]]> http://quality-news.com/157/overview-of-information-security-management-systems/feed/ 0 An Introduction To ISO 27001 (ISO27001) http://quality-news.com/11/an-introduction-to-iso-27001-iso27001/ http://quality-news.com/11/an-introduction-to-iso-27001-iso27001/#comments Sun, 31 May 2009 21:01:11 +0000 admin http://quality-news.com/?p=11 An Introduction To ISO 27001 (ISO27001)

The ISO 27001 standard was published in October 2005, essentially replacing the old BS7799-2 standard. It is the specification for an ISMS, an Information Security Management System. BS7799 itself was a long standing standard, first published in the nineties as a code of practice. As this matured, a second part emerged to cover management systems. It is this against which certification is granted. Today in excess of a thousand certificates are in place, across the world. read more

]]> http://quality-news.com/11/an-introduction-to-iso-27001-iso27001/feed/ 1