Sei sulla pagina 1di 20

Sponsors

Nippon Keidanren Proposal March 15, 2005


INFO SECURITY AS A BUSINESS CHALLENGE (page 4) Information security has become a matter of compliance and in contracts between companies there are increasing number of cases in which the certification of a third party institution is sought with regard to information security

ISAlliance Related Actions


MODEL CONTRACTS ISAlliance Board approved a model contracts project in December 04 ISAlliance, in conjunction with the American Bar Association will develop a series of model contracts provisions by 3rd quarter 2005

Nippon Keidanren Proposal March 15, 2005


INFORMATION SECURITY AS A BUSINESS CHALLENGE (page 4) Furthermore, internationally as well there appears to be a situation in which companies which are not making efforts in the area of information security are excluded from partnerships

ISALLIANCE RELATED ACTIVITY


ISA companies are beginning to encourage ISA membership of their partners to provide an incentive for continued business relationships E.g.. Nortel

Nippon Keidanren Proposal March 15, 2005


FOSTERING A CULTURE OF SECURITY (page 5) In modern network societies various entities are connected through networks and it is not sufficient to think about information security measures of a single company.

ISAlliance Related Activity


ISAlliance is not a security consultantit is a security trade association International Cross-sectoral Programs for collective security (best practices/ market incentives/certifications/ wholesale memberships for small business)

Nippon Keidanren Proposal March 15, 2005


AWARENESS OF INFO SECURITY REQUIREING MATURITY (page 5) In order to avoid accidents(preventative) measures alone are not sufficient. Taking rational measures means implementingin accordance with the level of importance of the information that a company should protect and risk.

ISAlliance Related Activity


ISAlliance Risk Management Project In December 2004 ISAlliance, in conjunction with Carnigie Mellon University CyLab started a Risk Management Working Group Will create best practices and data base to improve ROI by end of 2005

Nippon Keidanren Proposal March 15, 2005


ISSUES FOR COMPANIES REGARDING INFORMATION SECURITY MEASURES (1) UNDERSTANDING AND LEADERSHIP FROM TOP MANAGEMENT (page 6) There is still not a scheme in the market mechanism for companies to be praised. Even if information security measures are implemented seriously they will not be highly valued.

ISAlliance Related Activities


Best Practices for Senior Manager Guide Lead Corporate Information Security Working Group (US Congress) on Incentives Insurance Incentive Program to lower business costs for adherence to best practices Risk Management/ROI Project Awards program

Nippon Keidanren Proposal March 15, 2005


ISSUES REQUIRING EFFORTS BY BOTH COMPANIES AND GOVERNMENTS (page 11) (i) (T)he public and private sectors can create quantitative indicators regarding information security risks and share standards that will enable implementation of rational measures in accordance with risks.

ISALLIANCE RELATED ACTIVITY


ISAlliance/CyLab network certification program Will be discussed in Pittsburgh Wednesday

Nippon Keidanren Proposal March 15, 2005


(ii) The Public and Private Sectors could jointly hold an information security summit (page 11)

ISAlliance Related Activities


2003 US national Cyber Summit ISAlliance asked to produce best Practices for Small Businesses ISAlliance Creates Wholesale membership Program for small businesses (including international) ISAlliance Chairs National Cyber Security Partnership Meeting with DHS for 2005

Nippon Keidanren Proposal March 15, 2005


(iii) The public and private sectors should actively participate in international arenas in which information security is discussed from a range of perspectives. (page 12)

ISAlliance Related Activities


ISAlliance Membership of 4 Continents 20% ISAlliance Board is non-US based McCurdy 7 Clinton visit Japan, India, Latin America, Australia in 2004/2005 ISA Hosts World Electronics Forum 2004

Nippon Keidanren Proposal March 15, 2005


(v) Industry, academia and government should collaborate in providing and fostering human resources of information security. (page 12)

ISAlliance Related Activity


ISAlliance is a Collaboration between Electronics Industry Alliance and CyLab at Carnigie Mellon ISAlliance Provides Corporate Members (including international) Access to information on secure USCERT/ISA Portal DHS has endorsed ISA best Practices

CONTACT INFORMATION
Larry Clinton Chief Operating Officer Internet Security Alliance (703) 907-7028 lclinton@isalliance.org

Potrebbero piacerti anche