0 valutazioniIl 0% ha trovato utile questo documento (0 voti)
9 visualizzazioni20 pagine
ISAlliance is not a security consultant--it is a security trade association. ISalliance will develop a series of model contracts provisions by 3rd quarter 2005.
ISAlliance is not a security consultant--it is a security trade association. ISalliance will develop a series of model contracts provisions by 3rd quarter 2005.
Copyright:
Attribution Non-Commercial (BY-NC)
Formati disponibili
Scarica in formato PDF, TXT o leggi online su Scribd
ISAlliance is not a security consultant--it is a security trade association. ISalliance will develop a series of model contracts provisions by 3rd quarter 2005.
Copyright:
Attribution Non-Commercial (BY-NC)
Formati disponibili
Scarica in formato PDF, TXT o leggi online su Scribd
INFO SECURITY AS A BUSINESS CHALLENGE (page 4) Information security has become a matter of compliance and in contracts between companies there are increasing number of cases in which the certification of a third party institution is sought with regard to information security
ISAlliance Related Actions
MODEL CONTRACTS ISAlliance Board approved a model contracts project in December 04 ISAlliance, in conjunction with the American Bar Association will develop a series of model contracts provisions by 3rd quarter 2005
Nippon Keidanren Proposal March 15, 2005
INFORMATION SECURITY AS A BUSINESS CHALLENGE (page 4) Furthermore, internationally as well there appears to be a situation in which companies which are not making efforts in the area of information security are excluded from partnerships
ISALLIANCE RELATED ACTIVITY
ISA companies are beginning to encourage ISA membership of their partners to provide an incentive for continued business relationships E.g.. Nortel
Nippon Keidanren Proposal March 15, 2005
FOSTERING A CULTURE OF SECURITY (page 5) In modern network societies various entities are connected through networks and it is not sufficient to think about information security measures of a single company.
ISAlliance Related Activity
ISAlliance is not a security consultantit is a security trade association International Cross-sectoral Programs for collective security (best practices/ market incentives/certifications/ wholesale memberships for small business)
Nippon Keidanren Proposal March 15, 2005
AWARENESS OF INFO SECURITY REQUIREING MATURITY (page 5) In order to avoid accidents(preventative) measures alone are not sufficient. Taking rational measures means implementingin accordance with the level of importance of the information that a company should protect and risk.
ISAlliance Related Activity
ISAlliance Risk Management Project In December 2004 ISAlliance, in conjunction with Carnigie Mellon University CyLab started a Risk Management Working Group Will create best practices and data base to improve ROI by end of 2005
Nippon Keidanren Proposal March 15, 2005
ISSUES FOR COMPANIES REGARDING INFORMATION SECURITY MEASURES (1) UNDERSTANDING AND LEADERSHIP FROM TOP MANAGEMENT (page 6) There is still not a scheme in the market mechanism for companies to be praised. Even if information security measures are implemented seriously they will not be highly valued.
ISAlliance Related Activities
Best Practices for Senior Manager Guide Lead Corporate Information Security Working Group (US Congress) on Incentives Insurance Incentive Program to lower business costs for adherence to best practices Risk Management/ROI Project Awards program
Nippon Keidanren Proposal March 15, 2005
ISSUES REQUIRING EFFORTS BY BOTH COMPANIES AND GOVERNMENTS (page 11) (i) (T)he public and private sectors can create quantitative indicators regarding information security risks and share standards that will enable implementation of rational measures in accordance with risks.
ISALLIANCE RELATED ACTIVITY
ISAlliance/CyLab network certification program Will be discussed in Pittsburgh Wednesday
Nippon Keidanren Proposal March 15, 2005
(ii) The Public and Private Sectors could jointly hold an information security summit (page 11)
ISAlliance Related Activities
2003 US national Cyber Summit ISAlliance asked to produce best Practices for Small Businesses ISAlliance Creates Wholesale membership Program for small businesses (including international) ISAlliance Chairs National Cyber Security Partnership Meeting with DHS for 2005
Nippon Keidanren Proposal March 15, 2005
(iii) The public and private sectors should actively participate in international arenas in which information security is discussed from a range of perspectives. (page 12)
ISAlliance Related Activities
ISAlliance Membership of 4 Continents 20% ISAlliance Board is non-US based McCurdy 7 Clinton visit Japan, India, Latin America, Australia in 2004/2005 ISA Hosts World Electronics Forum 2004
Nippon Keidanren Proposal March 15, 2005
(v) Industry, academia and government should collaborate in providing and fostering human resources of information security. (page 12)
ISAlliance Related Activity
ISAlliance is a Collaboration between Electronics Industry Alliance and CyLab at Carnigie Mellon ISAlliance Provides Corporate Members (including international) Access to information on secure USCERT/ISA Portal DHS has endorsed ISA best Practices
CONTACT INFORMATION Larry Clinton Chief Operating Officer Internet Security Alliance (703) 907-7028 lclinton@isalliance.org