Governance, requirements, control framework and monitoring

Sep 27, 2012 19:01 GMT  ·  By

The Information Security Forum (ISF) – a global independent information security organization and a world leading authority on information risk management and cyber security – has updated the Standard of Good Practice.

The cyber threat landscape is constantly and rapidly evolving, with cybercriminals improving their attack methods by the day. That’s why best security practices must also be permanently changed in order to meet current requirements.

The Standard of Good Practice 2012 focuses on four main categories: security monitoring and improvement, control framework, security requirements and security governance.

The recommendations on compliance, risk assessment, awareness, resilience, security arrangements and policies from the report can aid organizations in strengthening their systems to ensure that malicious cyber events will not disrupt their business workflow.

“Never before have organizations had to contend with such a diverse range of factors that can significantly influence the success of their business, and in some cases, even threaten its survival,” ISF Global Vice President Steve Durbin explained.

“With authoritative guidance based on the practices of the ISF’s global Membership, and up-to-date coverage of hot topics including cyber security, consumerization of IT and securing the supply chain, The Standard is the international reference source for managing information risk which can be used as part of an organization’s overall approach to enterprise risk management.”

Some of the objectives for which companies from around the world rely on the study and its related services include: exploiting business opportunities while maintaining overall risk appetite, increase confidence in the ability to meet regulatory obligations, and the rapid adoption of new technologies in a secure manner.

ISF member companies can request the Standard of Good Practice for free. Non-members can purchase a copy of the report from the organization’s website. More information on The Standard of Good Practice and the ISF can be obtained from Steve Durbin at [email protected], or via phone at +1 (347) 767-6772.