Focus areas include cryptographic technology and applications, advanced authentication, public key infrastructure, internetworking security, criteria and assurance, and security management and support. Under FISMA Act of 2002, the Computer Security Division of the Information Technology Laboratory (ITL) develops computer security prototypes, tests, standards, and procedures to protect sensitive information from unauthorized access or modification. ITL works with industry and government to establish secure information technology systems for protecting the integrity, confidentiality, reliability, and availability of information.
Organizations in all sectors of the economy depend upon information systems and communications networks, and share common requirements to protect sensitive information.
#Pdf 2017 isf standard good practice iso#
The Standard represents part of the ISF's information risk management suite of products and is based on a wealth of material, in-depth research, and the extensive knowledge and practical experience of ISF Members worldwide. It addresses information security from a business perspective, providing a practical basis for assessing an organisation’s information security arrangements. The Standard of Good Practice for Information Security (the Standard) is the foremost authority on information security. This page contains a list of URLs that contain good practice guides, audit procedures and technology standards that are freely available.