ISO 17799 is intended to serve as a single reference point for identifying the range of controls needed for information systems used in industry and commerce.  It is recommended that ISO 17799 be adopted by organizations of all sizes.  ISO 17799 requires processes to ensure that the security controls for a system commensurate fully with its risks.  In order to accomplish this goal, an organization must take into account its relevant threats, vulnerabilities, controls in place, and potential impacts.  Due to ISO 17799 a firm cannot afford to be complacent about security event management.

Each business should have a system for:
  • Monitoring access to its systems
  • Retaining the integrity of unaltered logs.
  • Establishing sufficient audit trails to address threats or problems.
  • Reporting material events to both upper management and board of directors.

Stevens Technologies has years of experience working with all areas addressed by ISO-17799.  Following the principles of ISO-17799 is a superb way for organizations to bolster the security of their IT infrastructure, thereby promoting the overall well-being of the association.  Contact Stevens Technologies today so that our experts can put you on the road to IT security.

Return to Compliance Auditing


  
 
Sign Up For Our Security Newsletter
Privacy | Terms and Conditions

© 2010 Stevens Technologies, Inc.