Reponse to posting by PT Hoskin on 08/09/2000
This could be useful ...
JISC Assist ran a workshop on 15th October 1999
"Protecting Your Information"
http://www.jisc.ac.uk/pub99/pyi/
It explored security issues and reported on the piloting of BS7799 in three HE institutions.
Network Associates International worked with the sites to examine the potential of BS7799 and their methodology is reported here, along with presentations from the sites themselves.
It was mainly HE based, but I'm sure it would be useful to look through, and I think there are some summaries in there.
Amber
Assistant JISC Information Strategies Co-ordinator
~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~
Amber Thomas
Assistant Information Strategies Coordinator
Joint Information Systems Committee
C35 Cherry Tree Buildings
University of Nottingham, Nottm NG7 2RD
Tel: 0115 8466054
Fax: 0115 9514791
email: [log in to unmask]
url: www.jisc.ac.uk/info_strat/
>>> <[log in to unmask]> 08/09/2000 16:00:07 >>>
Hello everyone
I'm receiving requests from schools who are starting to notify to provide information about their need to certify security measures and the reference to BS7799.
It seems to me that few of our schools will be going headlong down the BS7799 route and embracing all of its facets in the detail contained in the standard. However, one could well argue that all the main headings of this standard apply to all organisations but to a differing degree.
It's my intention to summarise 7799 and provide my schools with some quick and easy guidance, eg three bullet points on access control etc. Before doing so, however, has anyone out there already done anything they'd be willing to share?
Peter Hoskin
Information Security Officer
Somerset County Council
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
|