kdr ebusiness

Because security should run through your IT like the lettering on a stick of blackpool rock, a security audit may reveal plenty of areas for improvement in your IT infrastructure. There are several frameworks you can choose to perform your IT audit. One of the most popular is the ISO 27002 standard (previously known as ISO 17799). This is a code of practice that covers the following areas:

• Structure
• Risk Assessment and Treatment
• Security Policy
• Organization of Information Security
• Asset Management
• Human Resources Security
• Physical Security
• Communications and Operations Management
• Access Control
• Information Systems Acquisition, Development, Maintenance
• Information Security Incident management
• Business Continuity
• Compliance

By assessing each of these areas in turn and by measuring your own arrangements against the code of practice, deficiencies in your IT infrastructure are revealed. Fixing those deficiencies will result in a more efficient, stable IT platform for your business.

If you would like to arrange an audit of your own IT infrastructure, please get in touch.

Tags: IT, audit, ISO 27002, ISO 17799

Bookmark to:
         

This entry was posted on Sunday, September 16th, 2007 at 10:58 pm and is filed under Articles, Security, IT Management. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.