Please enable JavaScript.
Coggle requires JavaScript to display documents.
Planning For Security (Information Security Policy, Standards, and…
Planning For Security
Information Security Policy, Standards, and Practices
-
-
Security policies are the least expensive controls to execute but most difficult to implement properly
-
-
-
-
-
The ISO 27000 Series
One of the most widely referenced and often discuessed security models, British Standard BS7799
Was adopted in 2000 as an international standard by International Organisation for Standardisation(ISO) and the International Electrotechnical Commission (IEC) as ISO/IEC 17799
Framework for information security that states organizational security policy is needed to provide management direction and support
Security Education, Training, and Awareness Program (SETA)
-
Security education and training builds on the general knowledge the employees must possess to do their jobs, familiarizing them with the way to do their jobs securely
-
Continuity Strategies
Contingency Planning(CP)
Entire planning conducted by organization to prepare for, react to, and recover from events that threaten the security of information assets of the organization,
-
-
-
-
-
-