External pressure for internal information security controls – David Cowan on Computer Fraud & Security

Organisations wishing to win new business through tenders and bids are under pressure to give clear information on how they deal with information governance and security. This has become so important that an organisation issuing a tender might choose one supplier over another based solely on its compliance with applicable regulations or the fact it holds the ISO 27001 certification.

Companies are therefore wondering if they should get certified, what compliance entails and what the implications of these ‘bureaucratic complications’ are. In any case, an information security review or internal audit can be a vital tool to enable a firm to understand its current maturity level and possible improvements as well as to answer lengthy and detailed security questionnaires.

Clickon the link below to read the article (PDF – extract from ‘Computer Fraud & Security’, November 2011)

External pressure for internal information security controls – David Cowan on Computer Fraud & Security

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s


%d bloggers like this: