Chapter

Information Security Hub – Page 10

Performing an Information Security Assessment

This presentation describes the steps in performing an information security assessment – what are the critical security goals and objectives? what are the documentation requirements? how to incorporate regulatory requirements? how to gather data to support a security assessment? how to perform a gap analysis? how to create a security road map? – and discusses the lessons learnt.

Audit Like a Hacker

This presentation guides you through a security audit from a different perspective – that of a hacker who focuses on "value" among other things.

Creating a Culture of Security

This presentation discusses the impact of human behavior on security, how human involvement can increase the effectiveness of security solutions and how a culture of security can benefit an organization.

Improving Information Security Compliance

This paper presents a process-oriented approach to manage organizational change needed to improve information security compliance. The approach uses Business Aligned Information Security  anagement (BAISeM) and principles that have been derived from standards like ITIL, CObIT and ISO 27001. In order to illustrate the approach, the context of IT service continuity is selected as an example.

Top Action Steps for Information Security Managers

"This publication is designed for Certified Information Security Managers (CISMs), Chief Information Security Officers (CISOs) and information security managers to use as action steps in addressing the questions posed by the 2001 ITGI publication Information Security Governance: Guidance for Boards of Directors and Executive Management. "

What the Board Needs to Know about Information Security Governance

This paper provides an overview of information security governance for the board of directors so "the board can provide a level of needed oversight to this vital business function that is adequate and necessary, and in doing so, exercise its essential duty of care."<br />
<br />
<span style="background-color: rgb(255, 255, 153); ">Dated Material</span>

Global State of Information Security Survey (PwC) (2011)

This presentation discusses the key findings from PricewaterhouseCoopers 2011 Global State of Information Security Survey – &quot;In the aftermath of the worst global economic jolt in 30 years, information security confronts a new economic order: Respected &ndash; but still restrained&quot;

CIO Portal