Information security management (3): the Code of Practice for Information Security Management (BS 7799)

摘要: Information security has become very important in most organizations. An acceptable level of information can only be introduced and maintained if the correct set controls, both procedural technical, is identified, implemented maintained. The process identifying effective controls a complicated, resource‐intensive process. A number large British companies have joined forces to establish Code Practice for Security Management. This document provides guidelines any organization identify introduce that will provide an protection resources. paper briefly discusses BS 7799 standard.