home
Add a piglix
All Activity
piglix
Tags
Categories
Users
About
FAQ

Information security management

Information security (InfoSec) describes activities that relate to the protection of information and information infrastructure assets against the risks of loss, misuse, disclosure or damage.

Information security management (ISM) describes controls that an organization needs to implement to ensure that it is sensibly managing these risks.

The risks to these assets can be calculated by analysis of the following issues:

Standards that are available to assist organizations implement the appropriate programmes and controls to mitigate these risks are for example BS7799/ISO 27000, Information Technology Infrastructure Library, O-ISM3 and COBIT.

...
Wikipedia