ISO IEC 27002 (ISO-17799) assistance please.
- From: "Chris Barber" <cmbarber@xxxxxxxxx>
- Date: Thu, 10 Jan 2008 19:36:02 -0700
I am hoping that the experts on this list might be able to assist me
with problem. I have a consultant who is doing some audit work for
the company I work for. This consultant has been quoting information
about best business practice and standards and has my managment in a
bit of a tizzy. So far I have been able to prove or disprove most
things that he has been telling my managment, but I am stuck one and
it seems that this item has struck a nerve.
The consultant has claimed that both NIST and ISO-17799 recomend the
use of automated workstation locking after X minutes. I have found
information on the NIST Standard but have not been able to find
anything on the ISO-17799 standard (or atleast not without buying it).
Does anyone on the list happen to have a copy of ISO-17799, if so
could you help me prove or disprove this comment?
I have done several google searches and all of the links I get end up
asking me to purchase the Standard. I think having it would be a good
thing, just that I do not have money in my budget to purchase it.
Many thanks in advance,
Chris.
- Follow-Ups:
- Re: ISO IEC 27002 (ISO-17799) assistance please.
- From: Tima Soni
- Re: ISO IEC 27002 (ISO-17799) assistance please.
- From: Tima Soni
- RE: ISO IEC 27002 (ISO-17799) assistance please.
- From: Abimbola, Abiola
- Re: ISO IEC 27002 (ISO-17799) assistance please.
- From: Roch
- Re: ISO IEC 27002 (ISO-17799) assistance please.
- Prev by Date: Re: Sniffing Mail Traffic - Outlook --> Exchange Server
- Next by Date: Re: discover encryption method
- Previous by thread: Sniffing Mail Traffic - Outlook --> Exchange Server
- Next by thread: Re: ISO IEC 27002 (ISO-17799) assistance please.
- Index(es):
Relevant Pages
- Re: ISO IEC 27002 (ISO-17799) assistance please.
... I have a consultant who is doing some audit work for ... This consultant
has been quoting information ... anything on the ISO-17799 standard. ... just that
I do not have money in my budget to purchase it. ... (Security-Basics) - RE: ISO IEC 27002 (ISO-17799) assistance please.
... This consultant has been quoting information ... information on the NIST
Standard but have not been able to find ... anything on the ISO-17799 standard. ...
just that I do not have money in my budget to purchase it. ... (Security-Basics) - Re: ISO IEC 27002 (ISO-17799) assistance please.
... A time period isn't specified but it is best practice. ... This consultant
has been quoting information ... anything on the ISO-17799 standard. ... just that
I do not have money in my budget to purchase it. ... (Security-Basics) - Re: ISO IEC 27002 (ISO-17799) assistance please.
... They have done some good work mapping multiple standards to the Common Configuration
Enumeration standard. ... This consultant has been quoting information ... just
that I do not have money in my budget to purchase it. ... (Security-Basics) - RE: ISO IEC 27002 (ISO-17799) assistance please.
... AFAIK, for clear desk and clear screen policy, it is not topic 7.3.1. ...
This consultant has been quoting information ... anything on the ISO-17799 standard.
... (Security-Basics)
