INFORMATION SECURITY GOVERNANCE GUIDELINES

Developing information security governance processes requires planning and knowledge. These preliminary Information Security Governance Guidelines extend the research and publications conducted by the RACPG; ISACA's CobiT 4.1 (2004); International Standards Organisation's ISO/IEC 27001, 27002 (2005) and ISO 27799-2008; The IT Governance Institute (ITGI); National Institute od Science and Technology (NIST) Security Metrics Guide for Information Technology Systems - Special Publication 800-55 (2008); Hertzog's OSSTMM 3 (2010); Committee of Sponsoring organisations of the Treadway Commission (COSO) (2005); IsecT (2012); ISM3 (2007); Department of Health's Clinical Governance Standards for Western Australian Health Services (2005); and William's TIGS-CMM (2007a). General practice staff, not being ICT trained, require practical resources to assist in implementing information security governance... This work is licensed under a copyright license: © 2012 Rachel J Mahncke All Rights Reserved

Also known as: The Information Security Governance Guidelines