The O-ISM3 standard brings process management and continuous improvement to the practise of information security management. This webinar will provide an overview of the key concepts contained in the standard that relate to process management. O-ISM3 defines four categories of information security processes, including Generic, Strategic, Tactical, and Operational.
Attendees will learn what Generic Processes and Strategic-Specific Processes (SSPs) are. Generic processes include things such as knowledge management, ISMS and system audit, and ISM design and evolution. SSPs include such processes as reporting to stakeholders, definition of division of duties rules, and information security resource allocation.
- Vicente Aceituno, Manager, Sistemas Informaticos Abiertos and Director of ISM3 Consortium
- Jim Hietala, VP Security, The Open Group
- Additional Information
Reference D021 Published 3 May 2011 Duration 30 minutes Type Webinars Subject Security