BSS(1999)British Security Standard, BS 7799
, British Standards, 1999, Available on: www.riskserver.co.uk/bs7799 Accessed: 2008-05-21
While companies should require providers to have security certifications, such as ISO 27001 or BS 7799
Part 2 across all relevant data center locations, such credentials are only a start, Hallawell told Security Management.
They describe the reasons why IT security is important (and go far beyond the obvious); track the Combined Code, the Turnbull Report and Sarbanes-Oxley and their influence on IT governance; and explain BS 7799
and how to organize information security to suit.
Subjects covered include penetration testing, wireless security and computer forensics, plus a course devoted to implementing BS 7799
- the government-recognised Information Security Standard.
Of the various best practice frameworks available, the most comprehensive approach is based on the implementation of the international information security management standard, ISO/IEC 17799, and subsequent certification against the British standard for information security, BS 7799
. This ISO 17799/BS 7799 frame work is the only one that allows organizations to undergo a third-party audit.
In the UK, these foundations can be found within the BS 7799
standard covering information security management, and the Standard of Good Practice published by the user-driven Information Security Forum (ISF).
This Health Check will provide you with an indication of your organisation's information security status based on BS 7799
, which itself provides practical guidance toward achieving the aims of information security.
The new edition of this important handbook, published by Kogan Page on 7th June 2004, is fully updated with the final version of the BS 7799
Only 12 per cent of the respondents were aware of the internationally recognised standard for information security (BS 7799
), and only one in 10 firms had staff formally qualified to manage the issue.
Some comfort may be found in the British Standard on Information Security Management, BS 7799
Acknowledged as the International Standard for defining the appropriate methods of controlling the confidentiality, integrity and availability of a company's information and information systems, BS 7799
provides the management framework to make MsourcE a secure organization capable of delivering the highest possible security to its clients.
Xacta's software products empower organizations with a mechanism for assessing and improving information security risk posture in accordance with government and industry standards (DITSCAP, NIACAP, BS ISO/IEC 17799, and BS 7799