Welcome to the third edition of The ISO27000 Newsletter, designed to keep you abreast of news and developments with respect to 17799 and information security.
The information contained in this newsletter is absolutely free to our subscribers and provides guidance on various practical issues, plus commentary on recent Information Security incidents.
Guidance and information included in this months issue:
ISO17799 NEW PRODUCT REVIEW: THE SECURITY MANUAL
This issue of the ISO 17799 Newsletter features a relatively new software product that is designed to provide valuable help and guidance for the Information Security Officer. The Information Security Officer's Security Manual (ISOM) is supplied as a compiled help file and it is therefore extremely easy to search for advice on information security organization matters. It assumes no previous knowledge of security issues and explains everything in plain English.
The manual provides information and guidance covering all standard areas of responsibility of the ISO and includes everything from the basics to comprehensive risk management measurement techniques. The ISOM helps simplify the critical points of security assessment and the implementation of secure computer-based systems. It also covers the issues associated with notebook and portable computers, and business continuity planning. It includes the following topics:
- Establishing an effective Information Security Structure
- Classifying information and data
- Authorizing access to data
- Information Security HR issues
- ISO duties and responsibilities
- Controlling portable computers
- Emergency data amendments
- Risk assessment techniques
- Information Security audit and compliance
- Business continuity planning
- Handling Information Security incidents
- Implementing Information Security policies
The guidance given is both practical and easy to understand, using diagrams and flow charts where necessary. This software is excellent value at US$295 for a single user license and is an excellent addition to the Information Security Officers electronic 'bookshelf'
A downloadable evaluation version, and further information on how to obtain this useful reference toolkit, can be found at the rather lengthy: http://www.the-search-directory.com/information-security-guide-and-handbook/