TMCnet News

Agiliance Issues Updated ISO Information Security Management Process Controls Content Packs
[March 04, 2014]

Agiliance Issues Updated ISO Information Security Management Process Controls Content Packs


SUNNYVALE, Calif. --(Business Wire)--

Agiliance®, Inc., the Big Data Risk Company™ and leading independent provider of integrated solutions for Operational and Security Risk programs, today announced the release of updated versions of the Agiliance ISO 27001 and Agiliance ISO 27002 Content Packs. These content packs provide best practices and detailed controls for information security management and risk assessments.

As threats to private and public sector organizations continue to multiply, implementing and maintaining an effective information security management system as well as conducting continuous risk assessments is critical for maintaining situational awareness. In response, the International Organization for Standardization (ISO) in collaboration with the International Electrotechnical Commission (IEC (News - Alert)) developed the ISO 27001 and ISO 27002 standards to help organizations develop information security controls based on their information security risk environment. In October 2013, these standards were updated to address dynamic changes in the risk ecosystem.

The Agiliance ISO 27001 and Agiliance ISO 27002 Content Packs provide organizations the necessary controls to create and implement an effective information security management system and risk assessments. With more than 1,000 controls combined these two content packs encompass the main areas for information security:





ISO 27001:2013     ISO 27002:2013
  • Context of the organization;
  • Leadership;
  • Planning;
  • Support;
  • Operation;
  • Performance evaluation;
  • Improvement; and
  • Annex A - List of controls and their objectives.
  • Information Security Policies
  • Organization of Information Security
  • Human Resource Security
  • Asset Management
  • Access Control
  • Cryptography
  • Physical and Environmental Security
  • Operations Security
  • Communications Security
  • Information Systems Acquisition, Development, Maintenance
  • Supplier Relationships
  • Information Security Incident Management
  • Information Security Aspects of Business Continuity
  • Compliance

Using the RiskVision™ workflow engine, Common Control Framework™, and assessment programs, organizations can gather, review, and score control assessment results to identify control gaps, orchestrate remediation actions, and ultimately gain a holistic view of their ISO compliance preparedness for ISO certification. Furthermore, organizations can run risk assessments against the ISO controls and risks, already mapped within RiskVision, to fully understand their risk posture.

"Creating an effective information security management system is a timely, costly, and ongoing project for many organizations," said Torsten George, vice president of worldwide marketing and products at Agiliance. "By providing our customers with this updated set of controls, they can create, and implement an information security management process tailored to their needs, while taking into account their risk environment and preparing for ISO certification."

Availability

The Agiliance ISO 27001 and Agiliance ISO 27002 Content Packs are available immediately. They require an ISO third-party license.

About Agiliance

Agiliance, the Big Data Risk Company, is the leading independent provider of integrated solutions for Operational and Security Risk programs. Agiliance is automating how Global 2000 companies and government agencies continuously monitor big data for risks across financial, operations, and IT domains to increase operational efficiency and orchestrate incident, threat, and vulnerability actions in real time. RiskVision customers demonstrate automation use cases within 30 days on-demand, and within 60 days on-premise, made possible by a configurable platform and applications, broad library of technology integrations, and vast domain and regulatory content. RiskVision scales with businesses, effectively managing assets, data, people, and processes to achieve 100 percent risk and compliance coverage. Its real-time risk analysis leads to optimized business performance and better investment decisions. For more information, please visit www.agiliance.com.


[ Back To TMCnet.com's Homepage ]