Security building blocks with ISO 17799 TIP - Get insights on ISO 17799's strengths and weaknesses, and receive practical advice on how to apply the standard in your own enterprise.
EXPERT TECHNICAL ADVICE:1 - 3 of 13
ISO 17799 EXPERTS
Mike Rothman President and Principal Analyst ASK A QUESTION
How do ISO 17799 and SAS 70 differ?
19 Feb 2008 EXPERT ANSWER - ISO 17799 and SAS 70 are two different policies that help organizations achieve compliance best practices. In this Q&A, Mike Rothman defines the policies and unveils the their differences.
How to apply ISO 27002 to PCI DSS compliance
28 Jan 2008 TIP - Expert Richard Mackey explains why the ISO 27002 can not only help organizations comply with PCI DSS, but also provide more structure to an overall enterprise compliance program.
How to migrate from SAS 70 to ISO 27001
08 Aug 2007 EXPERT ANSWER - In this SearchSecurity.com Q&A, security management pro Mike Rothman discusses the differences between SAS70 and ISO 27001 certifications, and offers advice on how to migrate from one to the other.
A CISO's lessons in building a security plan
SearchSecurity.com | 16 Jan 2006 ARTICLE - The man in charge of information security at a Massachusetts insurance company explains how he built up the company's IT defenses from the top down.
Competing regulations clog road to compliance
SearchSecurity.com | 20 Oct 2005 ARTICLE - It's difficult for companies to cope with today's multitude of compliance regulations, but an expert at Information Security Decisions said security frameworks may be the answer.
Regulatory Compliance and ISO 27001
IT Governance Ltd. | 11 May 2006 BOOK CHAPTER - In this excerpt from "The Case for ISO 27001," author Alan Calder explains how infosec pros can use ISO 27001 to comply with complex and overlapping regulatory requirements.
Management Support
IT Governance Publishing | 13 Apr 2006 BOOK CHAPTER - In the excerpt from "Nine Steps to ISO 27001 Success: An Implementation Overview," Alan Calder explains the first key to ISO 27001 success and what it takes to set up for success.
TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.