Information security management - A practical approach

IEEE AFRICON Conference

Volumn , Issue , 2007, Pages

  Dey, Manik ^a,b  

^a IEEE

^b KUWAIT INSTITUTE FOR SCIENTIFIC RESEARCH   (Kuwait)

Author keywords

Computer security; Information systems; ISO 17799 27001 standards; Security

Indexed keywords

INDUSTRIAL MANAGEMENT; INFORMATION SERVICES; REGULATORY COMPLIANCE; SOCIETIES AND INSTITUTIONS; STANDARDS;

BUSINESS NEEDS; BUSINESS ORGANIZATIONS; COMPUTER SECURITY; END-TO-END SYSTEMS; GOVERNMENT COMPLIANCE; HARDWARE AND SOFTWARE; INFORMATION SECURITY; INFORMATION SECURITY MANAGEMENT; INFORMATION SECURITY MANAGEMENT SYSTEMS; INFORMATION SYSTEMS; ISO 17799 / 27001 STANDARDS; SECURITY; SECURITY STANDARDS;

INFORMATION MANAGEMENT;

EID: 48649083931     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/AFRCON.2007.4401528     Document Type: Conference Paper

References (22)

1. Lawrence A Gordon, Martin P. Loeb, William Lucyshyn, Robert Richardson, 2006 CSI/FBI Computer Crime and Security Survey (GoCSI.com).
2. Virus Radar Website, [Online]. Available: http://www.virus-radar.com
3. Maria Cirino, Preempting Data Warfare: The Art of Comprehensive Vulnerability Management. (www.blackbooksecurity.com).
4. Amanda Andress, Surviving Security, 2004.
5. Anonymous, Maximum Security by Macmillan Computer Publishing USA , 2001.
6. Charles Cresson Wood, Information Security Policies Made Easy,2002.
7. Alexander, Michael, The Underground Guide to Computer Security, Addison-Wesly Publishing Compan,1996.
8. Gartner website. [online]. Available: http://www.gartner.com
9. British Standards Institute, Information security management, part 2: "Specification for Information Security Management Systems. Technical Report BS 7799-2", 1999.
10. ISO. ISO/IEC 17799:2000 -Information Technology -Code of Practice for Information Security Management. Technical Report. International Organization for Standards, Geneva, Switzerland, 2000.
11. ISO. International Standards ISO/IEC 27001, "Information technology Security techniques - Information security management systems - Requirements", 2005.
12. Lexis Nexis, Mathew Bender, "The Sarbanes-Oxley Act of 2002: with analysis", Newark, NJ, United States, 2002.
13. Organization for Economic Co-operation and Development,"The Revised OECD Principles of Corporate Governance". Paris, 2004.
14. "BS 25999:2006 Code of Practice for Business Continuity Management (BCM)". [online]. Available http:// www.bsi-global.com/
15. "Information Security Survey. Technical report", Ernst & Young LLP, Cleveland OH, USA, 2004.
16. Jan Eloff , Mariki Eloff, "Information Security Management - A New Paradigm", Proceedings of SAICSIST 2003 , Pages 130-136.
17. United States General Accounting Office (GAO). "Executive Guide , Information Security Management - Learning from Leading Organizations", May 1998.
18. Micki Krause, Harold F. Tipton, Information Security Management Handbook.
19. Simson Garfinkel and Gene Spafford, Practical Unix and Internet Security, 2nd Edition.
20. William Cheswick and Steven Bellovin, Firewalls and Internet Security.
21. Deborah Russell and G.T. Gangemi Sr, Computer Security.
22. Larry Hughes, Actually Useful Internet Security Techniques.