Category Archives: Security Management

2011 Data Breach Investigations Report by Verizon

Posted on 14 October 2011 by Admin

DBIR is a must to view for anyone working with the information security. 2011 report is available here.

Posted in Risk Management, Security Management, Security Training, Awareness and Reports | Comments Off on 2011 Data Breach Investigations Report by Verizon

Information Security Policy Examples and Templates

Posted on 14 October 2011 by Admin

There exist some examples for Policies. These can be good starting points when learning Information Security. Information Security Policy Templates by SANS. Security Policies by Ruskwig, and even more. ISMS policies by iso27k toolkit Sample Policies via dmoz Policies, Standards, … Continue reading

Posted in Security Management, Security Training, Awareness and Reports | Comments Off on Information Security Policy Examples and Templates

ISO 27001 “Information Security Mangement System” video in swedish (from 2010)

Posted on 14 October 2011 by Admin

There are videos available from 2010 in youtube. Presentation by Lars Söderlund, Alliansor AB – he is teacher at Swedish Standards Institute SIS part 1 part 2 part 3 part 4 part 5 part 6 Other link to SIS: Information … Continue reading

Posted in ISO, Security Management, Security Standardization and Practises, Security Training, Awareness and Reports | Comments Off on ISO 27001 “Information Security Mangement System” video in swedish (from 2010)

Building Security In Maturity Model (BSIMM)

Posted on 14 October 2011 by Admin

There exist an interesting model for measuring Software Security called BSIMM. Their Software Security Framework covers 4 domains and 12 practises.   The maturity is described with levels, and one can compare own result agains the average.   Main links … Continue reading

Posted in Security Management, Security Standardization and Practises | Comments Off on Building Security In Maturity Model (BSIMM)

ISO 27001 Certifications Register

Posted on 5 October 2011 by Admin

It is possible to view which companies and organizations have ISO 27001 certification via site “International Register of ISMS Certificates“. In their “number of certification per Country” list, there are about 7300 certifications.   Please note, the information is maintained … Continue reading

Posted in ISO, Security Management, Security Organizations | Comments Off on ISO 27001 Certifications Register