Google Directory - Computers > Security > Policy

Directory Help
Search only in StandardsSearch the Web

Standards

Computers > Security > Policy > Standards

Web Pages

View in Google PageRank order Viewing in alphabetical order

BITS Financial Services Roundtable - http://www.bitsinfo.org/FISAP/index.php
Security assessment questionnaire and review process based on ISO/IEC 27002 (access requires free registration). Also information on the overlaps between ISO/IEC 27002, PCI-DSS 1.1 and COBIT.

Common Criteria - http://www.commoncriteriaportal.org/thecc.html
Provides the Common Criteria for Information Technology Security Evaluation, also published as ISO/IEC 15408.

Information Governance Limited - http://www.infogov.co.uk
Supplier of Proteus Enterprise security risk management software for compliance with ISO/IEC 17799 and related information security, risk management and IT governance standards.

ISO 27000 Toolkit - http://www.17799-toolkit.com/
Package containing the ISO/IEC 27001 and 27002 standards plus supporting materials such as policies and a glossary.

ISO 27001 Certificates - http://iso27001certificates.com/
List of organizations certified against ISO/IEC 27001 or equivalent national standards, maintained by the ISMS International User Group based on inputs from all the certification bodies.

ISO 27001 Security - http://www.iso27001security.com/
Information about the ISO/IEC 27000-series information security standards and other related standards, with discussion forum and FAQ.

ISO/IEC 27001 Frequently Asked Questions - http://www.atsec.com/01/index.php?id=06-0101-01
FAQ covers the basics of ISO/IEC 27001, the ISO/IEC standard Specification for an Information Security Management System.

ISO/IEC 27002 Explained - http://www.berr.gov.uk/sectors/infosec/infosecadvice/legislationpolicystandards/securitystandards/isoiec27002/page33370.html
Information on ISO/IEC 27001 and 27002 from BERR, the UK government department for Business Enterprise and Regulatory Reform (formerly the DTI, the Department of Trade and Industry).

ISO/IEC 27002:2005 Information Technology - Code of Practice for Information Security Management - http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=50297
ISO site outlines the contents of the standard.

ISO27k Implementers' Forum - http://groups.google.com/group/iso27001security
Google Groups forum for those actively implementing the ISO/IEC 27000-series standards. Membership required for viewing content.

IT Governance Limited - http://www.27001.com
Information, books, tools and training for developing and implementing an information security management system in line with the international best-practice specification ISO/IEC 27001.

NERC Reliability Standards - https://standards.nerc.net
Information on the development of cyber and information security standards with emphasis on reliability.

NIST Special Publication 800-53 - http://csrc.nist.gov/publications/nistpubs/800-53-Rev2/sp800-53-rev2-final.pdf
Recommended Security Controls for Federal Information Systems has a similar scope to ISO/IEC 27002 and cross-references the standard.

Orange Parachute - http://www.orangeparachute.com
An information security and integrated systems management consultancy specializing in ISO/IEC 27001 certification, audits, assessments and training.

Overview of Information Security Standards - http://www.infosec.gov.hk/english/technical/files/overview.pdf
Report by the Government of the Hong Kong Special Administrative Region outlines the ISO/IEC 27000-series standards plus related standards, regulations etc. including PCI-DSS, COBIT, ITIL/ISO 20000, FISMA, SOX and HIPAA.

Praxiom Research Group Ltd. - http://praxiom.com/
Plain English descriptions of ISO/IEC 27001, 27002 and other standards, including a list of the controls.

The ISO 27000 Directory - http://www.27000.org
Information covering the ISO/IEC 27000 series of standards, including updates and consultants directory

The Security Practitioner - http://security.practitioner.com/introduction/
The ISO 27001 Perspective: An Introduction to Information Security is a guide to ISO/IEC 27001 and 27002 in the form of an HTML help file.

The SoGP - https://www.isfsecuritystandard.com/SOGP07/index.htm
Information on the Standard of Good Practice for Information Security, which is published by the ISF and addresses information security from a business perspective.

Veridion - http://www.veridion.net
ISO/IEC 27001 and 27002 training courses including Lead Auditor and Lead Implementer, plus other information security, risk management and business continuity courses on BS 25999, CISSP, CISA, CISM, MEHARI and OCTAVE.

Wikipedia: ISO/IEC 27000-series - http://en.wikipedia.org/wiki/ISO/IEC_27000-series
Open encyclopedia entry for the ISO/IEC 27000 family of information security management system standards.

Yahoo! Groups ISO17799security - http://groups.yahoo.com/group/iso17799security/
Mailing list to share knowledge about Information Security Management Systems based on the ISO/IEC 27000-series standards.

Help build the largest human-edited directory on the web.

Submit a Site - Open Directory Project - Become an Editor

The content of the Google directory is based on the Open Directory and is enhanced using Google's own technology.
The following Open Directory editors contributed to this category:
garyhins