Category Archives: Week 35

Security Frameworks

  A lot of IT Security Framework exists at the moment that can be used in company security. Below wrote simple comparison for each. ISO Family (27001, 17799, 20000) (International Standard Organization’s security management standards) A framework of standards that … Continue reading

Posted in IT Security, Week 35 | Leave a comment

NIST 800-53

I have read about the NIST (National Institute of Standards and Technology) information security, which is recommended for Federal Information Systems and Organizations. It covers the understanding of providing security controls for information based on three important aspects; confidentiality, integrity … Continue reading

Posted in IT Security, Week 35 | Leave a comment

ISO 27001 + 2 Review

ISO 27001 and  27002 Review The ISO ( International Organization for Standardization)27001 standard was published in October 2005, essentially replacing the old BS7799-2 standard. Information security management systems — Requirements =  ISO 27001 It is the specification for an ISMS, an … Continue reading

Posted in IT Security, Week 35 | Tagged , | 1 Comment

Standards

If you ever wondered what a standard is, well the answer can be tricky and the explanation can become pretty hard. To clarify it I will qoute standards.gov:  a standard means “Common and repeated use of rules, conditions, guidelines or … Continue reading

Posted in IT Security, Uncategorized, Week 35 | Leave a comment