ISO 17799 Information Aggregator

CtrlS Datacenter

Posted: June 20th, 2010 | Author: | Filed under: YouTUBE Videos | Tags: , , , , , , , , , , , | No Comments »

CtrlS is India’s first Tier IV datacenter, started with the vision of protecting the most critical assets of the knowledge economy. It is promoted by Rs 750 group and $20 Billion NYSE Listed Och-Ziff Capital. Our world class Tier IV data center has dual systems in every area of infrastructure ensuring 100% uptime for mission critical applications of all our customers. Our areas of expertise include custom-built IT Infrastructure and Services suitable for large corporations, Co-location Services, Managed Services, and Disaster Recovery & Business Continuity Planning Services. Today, our datacenter solutions provide strategic advantages to several most-admired organizations in the world. Our present clientele includes global telecom majors, multinational manufacturing conglomerates, top Indian banks and service enterprises. CtrlS guarantees all its clients significant savings by eliminating capital costs and reducing the recurring expenses without compromising on the performance. Our processes are backed by both ISO-2000-1 & ISO 27000-1 certifications. marketing@ctrls.in

http://www.youtube.com/v/capHz6z5POk?f=videos&app=youtube_gdata

Here is the original post: CtrlS Datacenter

ISO 27002 Security Policy Templates

Posted: June 20th, 2010 | Author: | Filed under: Uncategorized | Tags: , , , , , , , , , | No Comments »

The ISO 27002 Security Policy templates from ecfirst provide an excellent opportunity for organizations to develop customized policies to address critical regulatory compliance mandates. The policy templates are available in Microsoft Word as a download from the ecfirst e-store.

Why is the ISO 27000 such an important standard in the world of information security? The ISO 27000 series provides best practice recommendations on information security management, risks and controls within the context of an overall Information Security Management System (ISMS). It is applicable to organizations of all types, across industries, and sizes.

The security policy templates address all the controls defined within categories and clauses of the ISO 27002 information security standard. The ISO 27002 provides best practice recommendations on information security management for use by those who are responsible for initiating, implementing or maintaining an ISMS.

Your organization may be impacted by regulations such as the Health Insurance Portability and Accountability Act (HIPAA) and possibly other regulations such as the Payment Card Industryā€™s Data Security Standard (PCIā€™s DSS) or U.S. State requirements. An important reference and an excellent framework in the world of information security are the ISO 27001 and ISO 27002 standards. Your organization can get a fast start to addressing regulatory requirements by first developing policies centered around this exclusive global information security standard.

About ecfirst:
ecfirst, an Inc. 500 business, has served over 1400 clients all across the United States in the areas of compliance, security and professional services. ecfirst delivers deep expertise with its full suite of services that include ISMS, IT Project Management, and general security and IT infrastructure solutions.

Retrieved from “http://www.articlesbase.com/management-articles/iso-27002-security-policy-templates-968350.html”

Read the original: ISO 27002 Security Policy Templates

Critical Data Auditor

Posted: June 20th, 2010 | Author: | Filed under: Uncategorized | Tags: , , , , , , , , , | No Comments »

Detection of unsecured, sensitive data

“Information is the world’s new currency. It must be guarded to protect against unauthorized disclosure, loss, or theft”

- IDC Study, 2008

Before you can protect it, first you must find it” – the Irish company, 2008

What is Critical Data Auditor? Data protection is now a critical corporate governance issue in the boardroom. Recent high profile data leakage events have damaged reputations while rising legislative and standards requirements create imperatives for action in this area. Data Leakage Prevention (DLP) programs can help to secure critical and sensitive data, but firstly you must locate & identify the information you need to protect. Critical Data Auditor(TM) by an Irish company is scanning software to rapidly locate critical information and discover risk on company networks. Why Use it?

The Data Auditor is used to:

* satisfy legislation-based requirements;

* ensure compliance with policies & standards;

* conduct internal investigations;

* meet critical business or operational needs;

* perform audit & risk assessments.

Typical Applications:

* find & protect Intellectual Property;

* satisfy Freedom of Information requests, Competition Authority investigations, e-discovery orders and HR processes;

* conduct Due Diligence prior to acquisitions;

* check for confidentiality during ‘quiet periods’;

* check compliance with Data Retention, Data Protection Acts and other legislation;

* identify requirements for data archiving and data leakage prevention programs

* discover relevant data in criminal or civil investigations;

* Investigate for inappropriate or illegal use of I.T. resources;

* Identify critical data for back-up or encryption.

Detection of unsecured, sensitive data – Who should use it?

* Companies in regulated industries;

* Government Departments & public sector bodies;

* companies subject to PCI Security Standards Council regulation;

* companies compliant or certified for standards such as ISO 27000;

* Law firms, Auditors and professional services bodies;

* Regulatory authorities.

Discovering Risk, Protecting Reputations ” Information is the world’s new currency. It must be guarded to protect against unauthorized disclosure, loss, or theft” – IDC Study, 2008 Before you can protect it, first you must find it”.

“The average cost for compromised data grew to £101 per record, up 43% since 2005″ The auditor can aid compliance with standards, such as:

* Sarbanes Oxley Act;

* Basel II;

* EU data retention directive;

* UK Data Protection Act;

* EU Markets in Financial Instruments Directive;

* Payment Card Industry Standard (PCI);

* EU Audit and Privacy Directives;

* ISO 27001 information security standard;

* SB-1386: Security Breach Information Act;

* Gramm-Leach-Bliley Financial Services Modernization Act.

System Requirements No software is required on the systems to be scanned. The product is designed to run from PCs. The minimum hardware and operating system requirements detailed below refer to the auditing computer and are NOT a requirement for target computers whose files systems are being audited.

Hardware Requirements

* Desktop PC;

* 2Gb RAM;

* 10 GB free disk space. Operating System Requirements

* MS Windows® XP Professional;

* MS Windows 2003 Server.

The Data Auditor scans

* Microsoft Windows® operating systems;

* Unix / Linux operating systems;

* Novell Netware;

* Microsoft Exchange, Lotus Notes, Novell GroupWise;

* Citrix Servers.

This article was written by Colm Doherty of Pixalert – http://www.pixalert.com, Email Monitoring Solution. PixAlert is the market leader in products and services that provide detection of critical data for corporations.

Article Source:

http://EzineArticles.com/?expert=Colm_Doherty

Read more: Critical Data Auditor