SecurityRatty: tag: iso17799

Why Is ISO2700x Hot in UK, but Not in US?

2008-05-16 11:36:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...ISO17799. So, having recently read how many companies in the US were ISO17799 certified, I asked my audience whether they could guess what the number was. One guy volunteered an answer, after some hesitation: "Less then 50 That's "percent", folks I said to him: "You are right!" and laughed - "It is indeed less then 50!" 50 as in "count" (I...

Tags: iso17799 documents, security, security management, iso17799, security manager worth, set national standards, ideas, opposite true, countries

Review of My 2007 Security Predictions: Too Wimpy

2007-12-23 15:46:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...ISO17799/270001, COBIT, ITIL, etc) - will they take off like a rocketship or remain steadily interesting to some? Only time will tell Status Check VIII: PCI DSS continued to rage (despite TJX and other faux pas :-)), even some retailer backlash was seen. On the voluntary side, some say ITIL is emerging , other swear by ISO27xx1 series, but I...

Tags: status check iii, status check, status check viii, security, security predictions, status check vii, check, predictions, status

My 2008 Security Predictions!

2008-01-09 15:42:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...ISO17799, ITIL, COBIT frameworks = maybe ( again ); they likely won't be 'hot,' at least not in the US; ad hoc approach (with some use of ideas from the above frameworks) to security management will still rule Risk management Will we know what risk management actually is in the context of IT security = no . Some people (e.g here ) might, but...

Tags: security, security predictions, broader information security, information security, smb security, virtual security appliances, security market, security solutions, security software

Fun Reading on Security - 3

2008-05-23 17:23:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...ISO17799, sparked by my blog post. So, why not ISO? People seem to insist on doing compliance regulation by regulation despite all the known inefficiencies of it Finally, Richard Bejtlich's gem - no, GEM: "Security": Whose Responsibility? " Read it NOW! BTW, C-I-A is dead Enough for now Technorati tags: security , reading About me:...

Tags: security, security evolution, security metrics, tjx security, people security business, fun, people, business, extreme fun

Monthly Blog Round-Up - May 2008

2008-06-02 20:54:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...ISO17799/27002 might not be hot in the US, but discussing why it is not IS indeed hot. WTH? Well, "Why Is ISO2700x Hot in UK, but Not in US?" is in Top5 Again, people googling for "open source SIEM" have pushed this post ( this tiny blurb ) to top5. This ancient post from 2 years ago (!) years ago explains why an open source SIEM will NOT...

Tags: monthly blog round-up, blog, blog round-up, monthly, posts, compliance, everse compliance, post, ancient post

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo