IHS Inc. The Source for Critical Information and Insight
All Industries |  Change

Advanced Search
 
home > news
 

Internet Security Alliance, ANSI Offer Improved Information Security

June 6, 2007 // Published as a news service by IHS

 
Tools for Engineers
IHS sells flexible standards collections and robust engineering software to maximize your workflow.
To learn more, and for a free quote, please complete the form below.
Specs & Standards - Standards DB
ESDU Design Guides
IEEE Collections
ASTM Collections
HAYSTACK - Parts/logistics mgmt.
Hazardous Materials Mgmt.
CyberRegs - Compliance library
Safety Compliance Collection
Environment Compliance Collection
ASME BPVC
First Name:

Last Name:

Email address:
The Internet Security Alliance (ISA) and the American National Standards Institute (ANSI) released Information Security Package 27001, which offers businesses and organizations a standards-based tool for managing information security.

Information Security Package 27001 is a two-document resource that helps companies implement globally-recognized security management practices into contract-based business operations. The publication complements Information Security Package 17799, released in 2006.

"One of the core problems with creating a global system of Internet security is that domestic efforts are inherently limited," said Bob Feghali, vice president and chief information officer (CIO) at ANSI.

"We can transcend political boundaries and use the market to motivate improved security by relying on standards that have international agreement and domestic acceptance."

Information Security Package 27001 includes:

"Business networks are only as safe as their commercial partners," said ISA president Larry Clinton. "This resource gives corporations the vehicle to protect themselves from careless contractors and cyber criminals alike by making it easy and cost-effective to adapt to the most current information security standards. Using this publication will also save companies the time, legal costs and hassle of negotiating contract terms one by one."

The language featured in ISA's booklet embodies cyber security standards endorsed by the 9/11 Commission and implementation requirements in U.S. Senate Bill S.4. The booklet's private sector approach relies on the self-interest of companies in assuring their data is secure; legislation depends on a yet to be determined federal certification program.

Source: American National Standards Institute (ANSI).

ENGINEERING STANDARDS NEWS
September 3, 2008
New EU Rules on Pesticide Residues in Food Become Effective
A revised food safety regulation from the European Commission (EC) on allowable pesticide residues entered into force on September 1. ... more
September 2, 2008
ISO, IAF Announce Schedule for Implementation of Accredited Certification to ISO 9001:2008
International Organization for Standardization (ISO) and the International Accreditation Forum (IAF) agreed on an implementation plan to make ... more
August 29, 2008
DIN Updates Standard on Medical Device Labeling
The Deutsches Institut für Normung e. V. (DIN) published a revised edition of standard DIN EN 980, Symbols for use in the labeling of medical ... more
August 29, 2008
NSF Int'l Develops Certification Services for PVC Water Main Pipe
Requests from the plumbing industry prompted NSF International to expand its services for polyvinyl chloride (PVC) water main piping products ... more
August 29, 2008
Belgium Alerts EC About Release of Radioactive Iodine
On August 28, Belgium sent an alert concerning a radiological incident, classified at level 3 on the International Nuclear Event Scale, at the ... more
Show All..