Abstract
The implementation of an information security management plan in a company was discussed. An information security certification helps in getting an understanding of the information security in the company and in comparing it with the information security level of another certified company. BS7799, the only internationally accepted scheme to get a formal information security certification, is difficult to obtain as the company needs to conform to all the ten sections of BS7799. The Information Security Institute of South Africa (ISIZA) is a framework developed for information security certification consisting of five levels and is faster to obtain as the company needs to conform to small subsets of BS7799 only.
Original language | English |
---|---|
Pages (from-to) | 308-310 |
Number of pages | 3 |
Journal | Computers and Security |
Volume | 20 |
Issue number | 4 |
DOIs |
|
Publication status | Published - 2001 |
Keywords
- BS 7799
- ISO 17799
- Infomation security certification
ASJC Scopus subject areas
- General Computer Science
- Law