Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Management
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: diff btw BD 7799, ISF Security Standard, ITIL and others..

from [alan_willcox] Network Security [Permanent Link]
Subject: Re: diff btw BD 7799, ISF Security Standard, ITIL and others..
Date: Tue, 11 Jan 2005 13:52:27 -0500 
I make extensive use of the ISF Standard of Good Practice (SoGP), which is 
excellent. I have found that the SoGP is a much more practical standard 
than the BS or ISO frameworks (which, technically are not 'standards'). 
The SoGP also has much more breadth and depth of practical information 
than the more 'academic' BS/ISO frameworks. The ISF Standard is also free, 
whereas the others are not.
I also like ITIL; ISF and ITIL are quite complementary, actually. Both 
strongly enforce business ownership of information and risk. Both are very 
practical. ITIL addresses service excellence through IT operations, with 
security elements present for operations management. ISF focuses on the 
status of controls across multiple areas driving by business risk analysis 
and best practices.
The ISF is about to release its 2005 updated edition of the Standard of 
Good Practice; I'd encourage you to wait a few weeks for that release in 
order to get the most up-to-date information.
Of course, actually joining the ISF as a full Member brings a wealth of 
additional advantages. I get great value from their research reports, 
workshops, conferences, and other resources. It's a terrific value for the 
money.
-- Alan
"The views expressed here are mine and do not reflect the official opinion 
of my employer or the organization through which the Internet was 
accessed."
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: diff btw BD 7799, ISF Security Standard, ITIL and others.., Matthew Caston
Next by Date:  RE: diff btw BD 7799, ISF Security Standard, ITIL and others.., dave kleiman
Previous by Thread:  Re: diff btw BD 7799, ISF Security Standard, ITIL and others.., Matthew Caston
Next by Thread:  RE: diff btw BD 7799, ISF Security Standard, ITIL and others.., Martin Dion
Indexes:  [Date] [Thread] [Top] [All Lists]