San Francisco, CA, USA (16 February 2005)—Three leading security associations today announced formation of an alliance to address the management of risks and emerging regulations requiring a more thorough, enterprise-wide approach to security.
The alliance of ASIS International (ASIS), ISACA®, and the Information Systems Security Association (ISSA) brings together more than 80,000 global security professionals with a broad base of security backgrounds and skills to address these issues.
The need for this alliance is predicated on the significant increase and complexity of security-related risks to international commerce from terrorism, cyber attacks, Internet viruses, theft, fraud, extortion and other threats that require corporations to develop a more comprehensive approach to protect the enterprise.
“In an era of increasingly complex global security risks to people and businesses, it is encouraging to see the three most prominent international security organizations align to provide holistic solutions for the security professionals charged with the protection of people, property and information, and the business enterprises they serve,” said Glen Post, chairman and CEO of CenturyTel.
A critical step in the development of this integrated approach is to ensure all functions within the enterprise work together to identify and mitigate risks, and to effectively manage security-related incidents when they occur, in order to reduce their impact on people, profitability and property.
The objectives of the alliance are:
- Developing risk models that more fully qualify and quantify enterprise-wide security risks and potential impacts to the business
- Raising awareness to executive management regarding the nature of existing and emerging security threats, and best practices to mitigate those threats through the convergence of security organizations, processes and approaches
- Promoting a common security management voice to legislators and government agencies and providing them with information regarding best security practices
- Continuing to define the qualification, certification and training requirements for the Chief Security Officer (CSO)/Chief Information Security Officer (CISO) role and other security-related positions
The alliance will also advance its objectives through research, executive seminars and other educational offerings to benefit security and other business executives.
Today’s CSO/CISO and other security professionals need to be expert in many areas of security and control, particularly in the wake of Sarbanes-Oxley and other regulatory requirements. Together, ISACA, ISSA and ASIS International offer the expertise, training and resources required to address the current and emerging security threats to the enterprise.
ASIS International (www.asisonline.org) is the preeminent organization for security professionals, with more than 33,000 members worldwide. Founded in 1955, ASIS is dedicated to increasing the effectiveness and productivity of security professionals by developing educational programs and materials that address broad security interests, such as the ASIS Annual Seminar and Exhibits, as well as specific security topics. ASIS also administers the Certified Protection Professional (CPP) program, which signifies that an individual is board certified in security management. In addition, ASIS advocates the role and value of the security management profession to business, the media, government entities, and the public. By providing members and the security community with access to a full range of programs and services, and by publishing the industry’s number one magazine — Security Management — ASIS leads the way for advanced and improved security performance.
With more than 35,000 members in more than 100 countries, ISACA (www.isaca.org) is the global leader in information governance, security and assurance. Founded in 1969, ISACA sponsors international conferences, publishes the Information Systems Control Journal™, develops international information systems auditing and control standards, and administers the globally respected Certified Information Systems Auditor™ (CISA®) designation, earned by more than 38,000 professionals since inception, and the Certified Information Security Manager® (CISM®) designation, a groundbreaking credential earned by 5,100 professionals in its first two years.
With more than 13,000 members in nearly 100 chapters, the ISSA (www.issa.org , http://ciso.issa.org) is an international, not-for-profit association of information security professionals. It provides educational forums, information resources and peer interaction opportunities that enhance the knowledge, skill and professional growth of its members; including the CISO Executive Forum.
For ISACA: Deborah Vohasek, firstname.lastname@example.org, 847.590.7466
For ISSA: Jim Reavis, email@example.com, 360.739.9629
FOR ASIS: Eileen Smith, firstname.lastname@example.org 703.519.6200