Security service presentation
Hello, I am making a presentation for "STANDARD MANAGEMENT SYSTEM FOR THE SECURITY SERVICE" and I seem to not find what I need about 3 questions, can you help me?
Assign topic to the user
ISO 27001 INFORMATION SECURITY POLICY
Define the main rules for information security management.
Get it now 
ISO 27001 INFORMATION SECURITY POLICY
Define the main rules for information security management.
Get it now
ISO 27001 INFORMATION SECURITY POLICY
Define the main rules for information security management.
Get it now
1. Security standards enforcement measures?
Answer: Basic enforcement measures to be considered are configuration of technical solutions (e.g., the rules for setting strong passwords), awareness about consequences of
non-compliance (i.e., disciplinary process), and periodic audits.
2. Major threats to security standards?
Answer: Major threats you can consider are: lack of top management support, lack of understanding of the importance of the standard for the business, and the focus of the solutions only to comply with the standard and not in support of the business.
3. Technical faults affecting security standards?
Answer: The main faults to be considered are unmanaged security vulnerabilities (e.g., new software flaws, not installing updates), lack of control of changes and misconfigurations during implementation.
As a general answer you could refer to ISO 27001, the leading standard for information security. Here a some basic information:
- What is ISO 27001 https://advisera.com/27001academy/what-is-iso-27001/
- The basic logic of ISO 27001: How does information security work? https://advisera.com/27001academy/knowledgebase/the-basic-logic-of-iso-27001-how-does-information-security-work/
- Where to start from with ISO 27001 https://advisera.com/27001academy/knowledgebase/iso-27001-where-to-start-most-important-materials/
Comment as guest or Sign in
Mar 27, 2020