document
ISO 27001 Information Security Management Questionnaire Certification as per ISO 27001
Download Free ISO 27001 Information Security Management Questionnaire Certification as per ISO 27001
The purpose of this ISO 27001 Information Security Management Questionnaire Certification is to collate information within the scope of the project meeting in order to prepare a quotation and assist the certification body in contract review. It forms part of the audit documentation. The statements will be verified during audit stage
ISMS responsibility for the ISMS
- has been fully and separately regulated on all levels (e.g. independent ISMS representative)
- to some extent includes supervisory, cross-site functions (e.g. at operating level)
- is administered at all levels by the persons responsible for the other MS
- Read more
- 336 reads
The ITIL V3 Qualification Scheme FAQ
Download Free The ITIL V3 Qualification Scheme FAQ (Frequently Asked Questions)
What is a "qualification scheme"?
A qualification scheme is a roadmap for achieving a Professional Certification. It typically consists of a set of intermediate Credentials which build and depend upon each other which in total demonstrate that the skills and knowledge embedded in the Certification have been achieved. The ITIL V3 qualification scheme is very different from the V2 in that it defines different subject matter ladders to climb, has more levels to the scheme, provides guidance on how to achieve each type and level of Certification, delineates the prerequisites for each level and lays out the roles and responsibilities of the different organizations participating in the scheme.
Why is there a new ITIL qualification scheme?
Although much of ITIL content is the same between version 2 and version 3, its scope, its orientation and the structure of its advice have evolved significantly. The new scheme takes these changes into account and therefore has become a modular points-based system
- Read more
- 155 reads
Wireless Network Communication Security Policy
Download Free Wireless Network Communication Security Policy
1 Overview
The purpose of this policy is to secure and protect the information assets owned by
This policy specifies the conditions that wireless infrastructure devices must satisfy to connect to
- Read more
- 113 reads
Information Risk Management Sample Templates
Download Free Information Risk Management Templates
1. Introduction
1.1. Background
The processes outlined in this Best Practice Guide, have been developed in line with the current Australian Standard for Risk Management AS/NZS 4360:1999, HB 143:1999 Guidelines for managing risk in the Australian and New Zealand public sector and the MAB-MIAC Advisory Board - Guidelines for Managing Risk in the Australian Public Service (1996).
The Guide also takes agency requirements in terms of responsibilities for establishing a policy and systems for risk management into consideration, in accordance with the Financial Management Standard (1997) (S 83,84 & 85).
- Read more
- 247 reads
Vulnerability Assessment and Penetration Testing Plan Templates
Download Free Vulnerability Assessment and Penetration Testing Plan Templates
Vulnerability Assessment - Utilizing vulnerability scanners all discovered hosts can then be tested for vulnerabilities. The result would then be analyzed to determine if there any vulnerability that could be exploited to gain access to a target host on a network. A number of tests carried out by these scanners are just banner grabbing/ obtaining version information, once these details are known, the version is compared with any common vulnerability and exploits (CVE) that have been released and reported.
Benefits of Vulnerability Assessments
- Build and broaden awareness.
- Establish or evaluate against a baseline.
- Identify vulnerabilities and develop responses.
- Categorize key assets and drive the risk management process.
- Develop and build internal skills and expertise.
- Read more
- 382 reads
