Information security management needs a paradigm shift in order to successfully protect information assets. Organisations must change the holistic of security, requiring well-established Security Management System (ISMS). An ISMS addresses all aspects an organisation that deals with creating and maintaining secure environment. Organisational their staff manage cost-effectively can use ISMS. It also help assessment trustworthiness organisation's arrangements by other organisations. intelligent mix such as policies, standards, guidelines, codes-of-practice, technology, human issues, legal ethical issues constitute Ideally organisations should opt for combination these different establishing The initial might bridge too far when embarking on establishment ISMS, forcing take 'phased' approach. One approach be implement controls contained standard ISO17799. In this case is driven from process point view referred 'process security'. Another complement or add certified products IT infrastructure environment possible. here focuses technical 'product

Load

Load