The 2007 edition is aimed at UK and international organisations to help them reduce business risks linked to information systems.
The standard is split into six areas including security management, critical business applications, networks and computer installations.
Each section provides key objectives and an overview of the practical measures to be used to control risk, according to the ISF.
Endpoint protection, wireless access, security architecture, identity management and portable storage devices, are just some of the topics to be covered in the latest version, the association said.
The ISF is an independent organisation that helps businesses address information security and risk management problems.
ISF releases new good practice standard
By Fiona Raisbeck on Oct 17, 2007 10:07AM