01 December 2011

Organisations encouraged to comply with ISO 27001 at NASSCOM-DSCI's Information Security Summit

/EINPresswire.com/ IT Governance Asia, the one-stop shop for ISO 27001 information, books, toolkits and pocket guides has confirmed its participation at the Annual Information Security Summit in India this December.

The Summit, organised by The National Association of Software and Services Companies (NASSCOM) and Data Security Council of India (DSCI), takes place in New Delhi on 6-7 December. It will address the current security challenges against the backdrop of recent high profiles attacks, which affected organisations including the Pentagon, the IMF, Epsilon, Citigroup, and the websites of the CIA and CBI. Needless to say, these targeted attacks have brought into focus the need for tighter and more effective security systems for organisations globally.

ITG Asia recognises cyberattacks as the most pervasive high-priority risk facing companies across the globe. And the stakes of cybercrime are high. The potential impact of cyber risks to any individual business includes:

• Financial loss from theft or fraud;
• Loss of invaluable customer information or Intellectual Property;
• Possible fines from legal and regulatory bodies (e.g. FS, Information Commissioner) or
expensive court actions resulting from breach of data protection or confidentiality regulations;
• Loss of reputation through 'word of mouth' and adverse press coverage; and
• Organisational survival itself.

In today's information economy, the protection of information assets (information security) is a key element in the long-term competitiveness and survival of commercial organisations. In an environment where the survival of individual organisations is, at least, partially dependent on the security of the critical national infrastructure, all organisations must contribute to improved cybersecurity. With the Internet becoming a ubiquitous communication and application platform, the greatest risk to the business is not cyberwar, but cybercrime.
Cybersecurity standards are an important element in building a strong, resilient information and communications infrastructure. ISO/IEC 27001 is the most significant international best practice standard available to any organisation that wants an intelligently organised and structured framework for tackling its cyber risks. ISO 27001, as a specification for an information security management system (ISMS), is clear and precise; it also lists 133 key security controls that should always be at the heart of any organisation's approach to securing its information assets.

ISO/IEC 27001, together with the international code of practice, ISO/IEC 27002, provides a globally recognised best-practice framework for addressing the entire range of risks which, taken together, may be described as cyber risks.

Click here to read more ....

Solutions : www.xcyss.in

1 comment:

isocon said...

nice blog thanks for posting this information.

ISO 27001

Post a Comment