Rolling Meadows, IL, USA, 26 January 2005—Increased connectivity, portability and pervasiveness of computing make business transactions easier and more affordable, but also greatly increase exposure to data theft, viruses, fraud and loss of privacy. To address growing information security risks, the IT Governance Institute® (ITGI®) has released COBIT Security Baseline, a free downloadable publication that contains 39 steps to improve information security, essential advice and practical tools to help computer users of all levels of protect their systems.
COBIT Security Baseline includes a series of six Information Security Survival Kits targeted to boards of directors, senior executives, executives, managers, professional users and home users/telecommuters. Aiming to protect valuable information assets against loss, misuse, disclosure or damage, the kits include checklists outlining specific security risks, questions to ask and action items to help organizations and individuals.
“There is no such thing as 100 percent protection, but organizations can achieve a highly effective level of security by following the advice in COBIT Security Baseline,” said Erik Guldentops, CISA, CISM, advisor to ITGI. “Executives and users at all levels can refer to this publication often because it provides guiding principles that need to be reinforced as IT environments evolve.”
According to the publication, the benefits of good information security go beyond addressing risks. Strong security helps improve an organization’s reputation, reduces wasted effort and expenses incurred when recovering from a harmful incident, and helps companies gain a competitive edge by safely implementing new technologies. Gaps in security are frequently caused by:
New technologies creating new vulnerabilities
Insufficient security awareness education and training
Lack of prompt maintenance and patching
Increased networking and mobile computing
Insufficient discipline over controls
Determined hackers, criminals and terrorists
Increased legislative, legal and regulatory security requirements
COBIT Security Baseline can be downloaded from www.itgi.org at no charge. A printed version including laminated Survival Kit sheets is available for US $20 from www.isaca.org/bookstore.
COBIT (Control Objectives for Information and related Technology) issued by ITGI and now in its third edition, is internationally accepted as good practice for control over information, IT and related risks. COBIT is used to implement governance over IT and improve IT controls. It contains control objectives, audit guidelines, performance and outcome metrics, critical success factors and maturity models.
The IT Governance Institute® (ITGI) (www.itgi.org) was established in 1998 to advance international thinking and standards in directing and controlling an enterprise’s information technology. Effective IT governance helps ensure that IT supports business goals, optimizes business investment in IT, and appropriately manages IT-related risks and opportunities. ITGI offers COBIT®, symposia, original research and case studies to assist enterprise leaders and boards of directors in their IT governance responsibilities.
+1.847.590.7466 or +1.847.590.7455
IT Governance Institute
3701 Algonquin Road, Suite 1010
Rolling Meadows, IL, USA 60008