ISO17 -- Setting the Standard in Information Security Management

Information security is, for most companies, of the highest concern yet can often mean trade-offs in terms of balancing the requirements of business against the need for confidentiality, integrity, and availability of information. Traditionally, information security management has been based on loosely established best practices and guidelines with the primary goal of preventing, detecting, and containing security breaches, and restoring affected data to its previous state.

ISO 17799 provides companies with an establish framework from which to build a robust and operational Information Security Management System (ISMS). As a comprehensive information security process, the ISO 17799 standard provides companies with the following benefits:

The creation of a defined process to evaluate, implement, maintain, and manage

information security

A structured security methodology recognized internationally

Tailored policies, procedures and guidelines

Enterprise wide operational cost savings

Demonstration of comprehensive "due diligence"

Better management of information security risks on a planned and ongoing basis

Increased access to new customers and business partners through an improved

corporate image

The ability to demonstrate a commitment to information security while at the same

time being able evaluate the security status of business partners