“If you think technology can solve your security problems, then you don't understand the problems and you don't understand the technology.”
Bruce Schneier
Effective security management is tough.
That’s why we have standards to help us keep our information safe. However, standards typically come with little to no context, thus telling us what to do without telling us how to do it. This results in security managers not knowing where to best focus their efforts while vendors push technical solutions to fix all your problems.
iTnews has pulled together advice from various controls including ISO 2700 and NIST to guide you through what’s needed to build an effective information security management function within your organisation.
This comprehensive report is a must-have reference for C-suite executives, senior managers and anyone new to the information security management space.
The full report is available for download now.
It has been supported by RSA and Mimecast.
