ISAlliance and ANSI announce IT security standards documents
Publications help IT security planners extend their internal security to their contractual realtionships; contracting for information security often overlooked in negotiation
Willie Sutton robbed banks because, as he said, that’s where the money is. Nowadays bank robbery ranks among the least succesful of all crimes, and any glamour that might have been associated with it is lost in the mists of history. Cybercrime, which has increased 4000 percent since 1997 and accounts for as much as a 5 percent loss on stock prices, has taken bank robbery’s place among the most lucrative and infamous of felonies, and businesses large and small are struggling to keep up. To that end, the Internet Security Alliance (ISAlliance) and the American National Standards Institute (ANSI) (could it be ‘ANTSY’?) have developed a joint program to provide business leaders with practical tools to confront the threat.
The venture has produced two documents to help guide information technology planners extend internal security practices into their contractual relationships with others. With more companies conducting sensitive business over the internet, the ability to contract with others regarding security is becoming a critical element of negotiation. The ”Information Security Package” includes:
* Code of Practice for Information Security Management (developed internationally and subsequently adopted as an American National Standard)
* Contracting for Information Security in Commercial Transactions: An Introductory Guide
Both documents can be purchased as a package for $50, which includes shipping and handling.
-read more and purchase the documents at the ISAlliance Web site
