Information Systems Security Assessment – Open information security framework

简介: The Information Systems Security Assessment Framework (ISSAF) seeks to integrate the following m...

The Information Systems Security Assessment Framework (ISSAF) seeks to integrate the following management tools and internal control checklists:

-Evaluate the organizations information security policies & processes to report on their compliance with IT industry standards, and applicable laws and regulatory requirements
-Identify and assess the business dependencies on infrastructure services provided by IT
-Conduct vulnerability assessments & penetration tests to highlight system vulnerabilities that could result in potential risks to information assets
-Specify evaluation models by security domains to :
-Find mis-configurations and rectify them
-Identifying risks related to technologies and addressing them
-Identifying risks within people or business processes and addressing them
-Strengthening existing processes and technologies
-Provide best practices and procedures to support business continuity initiatives

2a01da1eef21063666f6000921e68074 Information Systems Security Assessment   Open information security framework

Benefits of ISSAF

-The ISSAF is intended to comprehensively report on the implementation of existing controls to support IEC/ISO 27001:2005(BS7799), Sarbanes Oxley SOX404, CoBIT, SAS70 and COSO, thus adding value to the operational aspects of IT related business transformation programmes.
-Its primary value will derive from the fact that it provides a tested resource for security practitioners thus freeing them up from commensurate investment in commercial resources or extensive internal research to address their information security needs.
-It is designed from the ground up to evolve into a comprehensive body of knowledge for organizations seeking independence and neutrality in their security assessment efforts.

This is not but posters of information security awareness use it impress your boss, colleague , clients etc ..

Download Information Systems Security Assessment here.

 

download:http://www.oissg.org/custom/information-security-awareness-poster-3.html

目录
相关文章
|
安全
How Important is Data Security for the Financial Industry?
90% of financial companies worldwide think they have data security risks. What security problems do financial industry users typically encounter?
2019 0
Common mistakes to avoid while using big data in risk management
Managing risk is a challenging enterprise, and errors are often made which can lead to catastrophic consequences.
1671 0
|
安全
The Cloud Security Ecosystem: Technical, Legal, Business and Management Issues
http://www.amazon.com/Cloud-Security-Ecosystem-Technical-Management-ebook/dp/B00ZC90H02/ref=mt_kindle?_encoding=UTF8&me= http://www.
861 0
|
安全
Magic Quadrant for Security Information and Event Management 2015
http://www.gartner.com/technology/reprints.do?id=1-2J31FF4&ct=150706&st=sb ...
687 0
|
安全
common sense security framework
http://www.commonsenseframework.org/wp-content/uploads/2015/01/Common-Sense-Security-Framework-v1.
820 0
|
安全
OSSAMS - Open Source Security Assessment Management System
http://www.ossams.com/ http://www.securitytube.
801 0