Category Archives: ICT Standards
ETSI Security Whitepaper 2012
ETSI has published new revision of their security whitepaper . ETSI in Wikipedia: The European Telecommunications Standards Institute (ETSI) is an independent, non-profit, standardization organization in the telecommunications industry in Europe, with worldwide projection. ETSI has been successful in standardizing … Continue reading
Posted in ETSI, ICT Standards, ICT Training and Courses, Security Standardization and Practises, Telecom Security
Comments Off on ETSI Security Whitepaper 2012
Common Criteria, main links
Wikipedia: Common Criteria is a framework in which computer system users can specify their security functional and assurance requirements, vendors can then implement and/or make claims about the security attributes of their products, and testing laboratories can evaluate the products … Continue reading
Posted in ISO, Security Certifications, Security Standardization and Practises, Security Training, Awareness and Reports
Comments Off on Common Criteria, main links
Continuous Security Monitoring, new draft by NIST
NIST has produced an interesting set of drafts related to Continuous Monitoring(CM). Continuous Monitiring here can be explained by sentence: “Continuous security monitoring is a risk management approach to Cybersecurity that maintains a picture of an organization’s security posture, provides … Continue reading
Posted in Cybersecurity, ICT News, NIST, Security Standardization and Practises
Comments Off on Continuous Security Monitoring, new draft by NIST
ISO 27001 Training videos
There exist nice video set about ISO 27001, presented by Martin Dion. Worth to watch! The tree videos available are: ISO 27001 JanuaryTraining: Introduction to standards (ISO, NIST, PCI etc) ISO 27001 FebruaryTraining Information Security Roles and Responsibilities ISO 27001 … Continue reading
Posted in ISO, Security Standardization and Practises, Security Training, Awareness and Reports
Comments Off on ISO 27001 Training videos
ITU Terms and Definitions
ITU (International Telecommunication Union, intro) has online database for terms and definitions for 6 languages. Currently there are more than 100000 terms. For the term “information security” it can find a match in ITU-T. Term : information security Definition … Continue reading
Posted in ICT Terminology, ITU-T, Security Terminology, Security Training, Awareness and Reports, Telecom Security
Comments Off on ITU Terms and Definitions
ISO Standards, Risk Management and Information Security Vocabularies
There are different vocabularies for Information Security. One good reference Risk Management is the ISO Guide 73 from 2009. For Information Security, one should look ISO 27000 from 2009. Unfortunately these standards are not free. For free vocabulary, it is … Continue reading
Posted in ICT Terminology, ISO, Risk Management, Security Terminology, Security Training, Awareness and Reports
Comments Off on ISO Standards, Risk Management and Information Security Vocabularies
ISO 27001 “Information Security Mangement System” video in swedish (from 2010)
There are videos available from 2010 in youtube. Presentation by Lars Söderlund, Alliansor AB – he is teacher at Swedish Standards Institute SIS part 1 part 2 part 3 part 4 part 5 part 6 Other link to SIS: Information … Continue reading
Posted in ISO, Security Management, Security Standardization and Practises, Security Training, Awareness and Reports
Comments Off on ISO 27001 “Information Security Mangement System” video in swedish (from 2010)