ISO 27001 Compliance

ISO 27001 Compliance — Security is Standard with Tripwire

The code of practice for International Organization for Standardization (ISO 27001) is recognized internationally as a structured methodology for information security and is widely used as a benchmark for protecting sensitive and private information. A widely held opinion is that ISO 27001 is an umbrella over other requirements of law or regulation (such as JSOX, SOX and the Data Protection Directive) or contractual standards (PCI DSS) because it requires companies to review such obligations when assessing risk. Organizations that choose to adopt ISO 27001 compliance also demonstrate their commitment to high levels of information security.

There are 11 major controls required as part of the ISO 27001 compliance standard that comprise best practices in information security. Tripwire covers them all, including:

Security Policy
Organization of Information Security
Asset Management
Human Resource Security
Physical and Environment Security
Communications and Operations Management
Access Control
Information Systems Acquisition, Development and Maintenance
Information Security Incident Management
Business Continuity Management
Compliance

Infosecurity Europe 2012 Wrap Up
Infosec expert and ‘cynic’ Javvad Malik summarizes the most important aspects of Infosecurity Europe 2012. Some of the top trends and key takeaways: risk management and the rising role of the CISO....
Communicating the value of Information Security – Part 3
In part 2 of this series, I talked about getting to know the "language" of your particular business. This week, I want to talk about how to leverage Enterprise Architects, if they are available. They can be...
The Growing Pains of the New CISO
Recently we had an opportunity to interview Phil Cracknell (@PCracknell on Twitter) during Infosecurity Europe. Infosec expert and ‘cynic’ Javvad Malik asks Mr. Cracknell, Global Security and...

To read more blog posts, visit the State of Security Blog.

Effective Security with a Continuous Approach to ISO 27001 Compliance
Read

That is all the resources we have on the subject of ISO 27001. Try these other Tripwire resources:

Reducing Federal Systems Risk with the SANS 20 Critical Controls
Read
10 Steps for Early Incident Detection
Read
Needle in a Haystack? Getting to Attribution in Control Systems
Read
Continuous Monitoring: Responding to New Threats in More Complex IT Environments
Read
Security-In-Depth Using Integrated Risk-Conscious Controls
Read

To browse more white papers, visit the resource library.

To browse more videos, visit the resource library.

SC Magazine Readers Designate Tripwire as a Finalist in 2012 Awards for Best Policy Management Solution
Tripwire, Inc., a leading global provider of IT security and compliance automation solutions, has been named a finalist in the Best Policy Management Solution category by the 2012 SC Magazin... Read
Tripwire Appoints Dwayne Melançon to Chief Technology Officer Role for Global Operations
Tripwire, Inc., a leading global provider of IT security and compliance solutions, has appointed Dwayne Melançon to the role of Chief Technology Officer, where he will play a critical... Read
Tripwire Granted U.S. Patents to Facilitate Innovative Management of Data Processing Environments
Tripwire Inc., the leading global provider of IT security and compliance automation solutions, today announced it has been granted U.S. Patent numbers 7,822,724 B2 and 7,765,460 B2 for chang... Read

To browse more, visit the company news section.