Information today is considered
as one of the most valuable things for every organization. Today’s hackers use
different methods to reach the desired information, so you better take care and
individual care to not become a step in the violation of the company's system.
Many people are trying to destroy the reputation of somebody for different
reasons, so there comes the need to include reputation management as a part of
the organization, so you can be a little more secure. As the information
security plays a very important role in the protection of the assets of some
company, every organization needs to take care for this important segment. Even
there cannot be some specific formula that can guarantee a hundred percent
security; there is a benchmark set of standards that are created to make sure
companies have an adequate security level, with efficient use of
resourses. Some of the most common and
used standards for information security are:
• The ISO standards- a group of standards
where belongs ISO/IEC 27002:2005, ISO/IEC 27001:2005, ISO/IEC 15408 (Evaluation
Criteria for IT Security, ISO/IEC 13335 (IT Security Management). All of them
have a specific function that pays attention to different segments, in order to
satisfy everybody’s needs.
COBIT- of the Control Objectives
for Information and related Technology, which is a control frame work. He links
all initiatives from IT to the companies’ business requirements. As well, these
security standards organize the IT activities into a widely accepted process
model and identify the major IT resources. This set of standards is adapted for
both small and large organization and lately is one of the most used on the
international level.
• ITIL- The information Technology
Infrastructure Library, of better known as ISO/IEK 20000 series, actually is a
collection of the best practices in IT service management, which puts his focus
onto the IT service processes and always puts users’ needs on the center.
