Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Information-Security-News
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ISN] New Version of ISO17799 Published

from [InfoSec News] Network Security [Permanent Link]
Subject: [ISN] New Version of ISO17799 Published
Date: Wed, 22 Jun 2005 01:43:56 -0500 (CDT) 
Forwarded from: Sue <sue@the-hamster.com>

NEW VERSION OF ISO 17799 PUBLISHED

The official revision of ISO 17799, the international computer security
standard, has today been released. This new version has been under
development for several years, and introduces a number of siginificant
changes. The old version, originally published in 2000, has been
withdrawn.

The new standard now contains eleven 'core' chapters, as opposed to the
original ten, with existing chapters being re-organized. The new format
is as follows:

1) Security Policy
2) Organizing Information Security
3) Asset Management
4) Human Resources Security
5) Physical and Environmental Security
6) Communications and Operations Management
7) Access Control
8) Information Systems Acquisition, Development and Maintenance
9) Information Security Incident Management
10) Business Continuity Management
11) Compliance. 

ISO17799:2005 also introduces controls to address a range of new issues.
These include topics such as outsourcing and patch management. In
addition, other areas have been substantially extended or re-shaped,
such as employment termination, and mobile communication.

Steps have also been taken to enhance the "user friendliness" of the
standard.

OFFICIAL SOURCES
The following official outlet (BSI) has been updated to provide copies
of the new standard (as opposed to the old):
http://www.standardsdirect.org/iso17799.htm

The ISO 17799 Toolkit, the standard's support and starter kit, has also
been updated to include the new version: http://www.17799-toolkit.com


For further information see the ISO 17799 Newsletter archive site at:
http://17799-news.the-hamster.com 
----------------------------

Thanks and kind regards, 

Sue
ISO 17799 Newsletter



_________________________________________
Attend the Black Hat Briefings and
Training, Las Vegas July 23-28 - 
2,000+ international security experts, 
10 tracks, no vendor pitches.
www.blackhat.com
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [ISN] New Version of ISO17799 Published, InfoSec News <=
Previous by Date:  [ISN] Credit card hacking not hard, InfoSec News
Next by Date:  Re: [ISN] Computers' Insecure Security, InfoSec News
Previous by Thread:  [ISN] Credit card hacking not hard, InfoSec News
Next by Thread:  [ISN] Book Review - The Art of Computer Virus Research and Defense, InfoSec News
Indexes:  [Date] [Thread] [Top] [All Lists]