ISO 17799

Email Alerts

Register now to receive SearchSecurity.com-related news, tips and more, delivered to your inbox.
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

  • Is the Orange Book still relevant for assessing security controls?

    Is the Orange Book still the be-all and end-all for assessing security controls in the enterprise? Security management expert Mike Rothman explains what happened to the Orange Book, and the Common Criteria for Information Technology Security Evaluati...  Ask the Expert

  • How do ISO 17799 and SAS 70 differ?

    ISO 17799 and SAS 70 are two different policies that help organizations achieve compliance best practices. In this Q&A, Mike Rothman defines the policies and unveils the their differences.  Ask the Expert

  • How to apply ISO 27002 to PCI DSS compliance

    The Payment Card Industry Data Security Standard may be fairly straightforward, but it's lacking in defining the processes that will ultimately lead to PCI DSS compliance. In this tip, expert Richard Mackey explains why the ISO 27002 can not only hel...  Tip

  • How to migrate from SAS 70 to ISO 27001

    In this SearchSecurity.com Q&A, security management pro Mike Rothman discusses the differences between SAS70 and ISO 27001 certifications, and offers advice on how to migrate from one to the other.  Ask the Expert

  • Should ISO 17799 play a role in risk assessment?

    In this SearchSecurity.com Q&A, security pro Mike Rothman offers advice on the best risk assessment procedures, and discusses whether or not ISO 17799 should be involved in the process.  Ask the Expert

  • ISO 17799: A methodical approach to partner and service provider security management

    Outsourcing may relieve some of a company's burdens, but handing off business functions doesn't necessarily mean less work for security teams when sensitive information or critical infrastructure hang in the balance. In this tip, Richard Mackey expla...  Tip

  • Embarking on the ISO 17799 certification trail

    ISO 17799 has proven to be a helpful set of guidelines for CISOs looking to improve their security strategies. The framework can't work by itself though, and security officers must actively prepare an organization for an ISO 17799 project. In this t...  Tip

  • How is ISO 17799 different from SAS 70?

    In today's security world, it's hard to keep track of each and every management standard and auditing procedure. In this SearchSecurity.com Q&A, security management expert Shon Harris reveals the differences between ISO 17799 and SAS 70.  Ask the Expert

  • Mapping the path toward information security program maturity

    Amid tight information security budgets, it can be hard to recommend the best ways to invest new dollars or focus new resources. In this tip, Ed Moyle explains why creating a security program maturity map is a sensible way to not only track a program...  Tip

  • How can a call center achieve compliance with ISO 27001?

    Before you begin putting the pieces of your security program together, you may want to have a look at ISO 27001. In this expert Q&A, Shon Harris explains the framework and how it can identify and address an organization's security risks.  Ask the Expert

Back to top