Find Resources & Connect with members on topics that interest you.

AI - Acquire and Implement

PO - Plan and Organize

DS - Deliver and Support

Please sign in to see your topics.

You must be logged in to join this group.

ISO/IEC 27000 Series

Welcome to the ISO/IEC 27000 Series topic!

In this topic you may collaborate with your peers by participating in discussions, adding links and documents, and starting or contributing to wikis.

ISACA members can participate by clicking on the “Join this Community” button. You must be signed into the site. Set your alerts to be notified of new discussion activity within this community. Not an ISACA member? Join now!

 
This Topic Has:
829 Members
1 Online
7944 Visits

 Recent Discussions

Best practice timeframe for user account deletion?. Posted by Gail668.
How do we assess the Risk Management Procedure.. Posted by Swatantra Gupta.
ISMS Mandatory Documents and Mandatory Procedures. Posted by Swatantra Gupta.

Community Leader

khfaisal
Swatantra Gupta

Swatantra Gupta

Title: Consultant

NEW! Participate in Discussions Via Email. 

You can now respond to discussions by simply replying to the email alert. Just enable this feature in discussions on this topic. Learn more

Discussions: 18 total

Must be a Topic member to contribute
View All »
Hi, I am trying to put a reasonable policy time to : "upon termination of employment " for 8.3.3 ISO. What is the best practice recommendation for the period in which system account should be deleted? If priviledge accounts must be deleted in 24 hrs - ...
Gail668 | 4/26/2013 10:05:35 AM | COMMENTS(2)
I have come across this situation several times, where I have been presented with many Risk management procedures by ISO 27001 implementers. How should I go ahead and evaluate a Risk Management Procedure?
Swatantra Gupta | 3/22/2013 6:47:31 AM | COMMENTS(3)
What are the mandatory documents and mandatory procedures required for ISMS certification?
Swatantra Gupta | 3/22/2013 6:37:29 AM | COMMENTS(2)
IT RISK MANAGEMENTDRIVERS, CHALLENGES AND ENABLERS FOR AUSTRALIANORGANISATIONS To attain strategic, program and operational objectives,most organisations rely on the right IT services to be delivered at the righttime. This is only possible if IT risks hav...
Paras_Shah | 3/22/2013 6:32:39 AM | COMMENTS(0)
Hi This is the MOST used Jargon these days in the Tech Industry ..... BYOD - Bring Your Own Device ! WHERE :) to the organizational boundaries WHICH DEVICE ? your most loved - Smart phones, Tablets, and sometimes your own Laptops... QUEST...
khfaisal | 2/26/2013 5:11:48 AM | COMMENTS(3)
I am sure you had a chance to look at COBIT 5 for Information Security. If not, I will recommend to have a look now. COBIT 5 for Information Security provides guidance to help IT and security professionals understand, utilize, implement and direct imp...
Paras_Shah | 2/16/2013 9:12:58 AM | COMMENTS(1)

Documents & Publications: 6 total

Must be a Topic member to contribute
COBIT 5 for Information Security provides guidance to help IT and security professionals understand, utilize, implement and direct important information security-related activities, and make more informed decisions while maintaining awareness about emerging technologies and the accompanying threats.
Posted by Paras_Shah 275 days ago
Describe the relevants elements to build a Security Information Planning based to ISO 27002 and COBIT 4.1
Posted by Monica306 374 days ago
Books
Posted by ISACA 849 days ago
ISMS Policy or teh Information Security Policy is the high level document as required by ISO 27001 (ref - Clause 4.2.1b and A.5.1.1)
Posted by khfaisal 976 days ago

Events & Online Learning: 0 total

No Results Found

Journal Articles: 15 total

Volume 2, 2013
by Nurudeen Odeshina, CISA, CISM, CRISC, ISO 27001 LI, ITSM
As is often said, “information security is not a destination, it is a journey,” and for the organization it means continuous improvement.
Volume 5, 2012
by Alessandro Campi
This article focuses on the security of the authentication procedure set up by a service provider (SP) using a solution/tool obtained by a technical security provider (TSP).
Volume 5, 2011
by Haris Hamidovic, CIA, ISMS IA, ITIL-F, IT Project+ and Jasmina Kabil
The main objective of this article is to provide an introduction to the key elements of information security management in health care using ISO 27799:2008.
Volume 4, 2011
by Charu Pelnekar, CISA, CISM, ACA, AICWA, BCOM, CISSP, CPA, MCSE, QSA
The goal of this article is to provide guidance on the planning and decision-making processes associated with ISO 27001 implementation.
Volume 4, 2011
by Krishna Raj Kumar, CISA, CISM
This article seeks to share a simple model that can be used for ISM in governments.
Volume 2, 2010
by Steven J. Ross, CISA, MBCP, CISSP

Wikis: 2 total

Blog Posts: 5 total

Must be a Topic member to view blog posts
მოგესალმებით და ამ პოსტში შევეცდები სტანდარტებზე გესაუბროთ. სტანდარტები... მაშ ასე, ინფორმაციული უსაფრთხოების სტანდარტებზე სანამ გადავალთ, გლობალურად არის 2-3 სტანდარტების ტერიტორიები.
Posted By : David190 | 0 comments
Grupos de Estudio para Acreditaciones de JUNIO, SEPTIEMBRE Y DICIEMBRE 2013. Para los que esten interesados en la presentación del exámen de certificación CISA y CISM  o para cualquiera que desee comenzar a prepararse para estas o las próximas pruebas, pu...
Posted By : Alexander Osorio | 0 comments
On March 1st,  I was invited to speak at the CampIT conference on Enterprise Risk/Security Management at Rosemont Convention Center. Before me there were two speakers. The first presenter spent an hour presenting the story from the trenches of technolog...
Posted By : Umesh391 | 1 comments
17 Aug 2011
Posted By : masarker | 0 comments
8 Jun 2010
Hello, this is my first post on my blog at ISACA.  I feel honored to be among the many members of the ISACA organization and look forward to exchanging ideas, issues, and changes in the Information Security and all of the areas of Risk, Governance, and Co...
Posted By : Donald515 | 0 comments