Thursday, October 8, 2009

A Code of practice is not used for certification purpose, but serves as guidance

Managing risk by design

Information security (IS) is a topic of continuing interest. For instance, “Lax security left employees’ data vulnerable,” reports Atlanta Journal Constitution. “Universities and their students can be identity theft hacker’s ‘Dream’,” cautions Reuters. And talks about ‘Huge rise in cash-machine crime.’ Guiding organisations in information security are standards in this space, such as the ISO 27001:2005. As a trainer in information security standards, Govind Srinivasan, CEO, Paramount Dataware Pvt. Ltd., Chennai, ( interacted with Business Line to explain the related issues.


No comments: