International information security experts IT Governance
, are encouraging information security professionals to help organisations avoid data breaches by analysing the breaches disclosed in the news every day. IT Governance advises that this analysis can help information security professionals develop strategies and tactics to prevent cyber threats.
Alan Calder, the founder and chief executive officer of IT Governance, said: “Data breaches, such as those suffered by Tesco Bank, Morrisons and TalkTalk, make headline news every day. Information security professionals can learn from them and develop tactics to avoid breaches and respond to information security incidents.
“A data breach compromises the confidentiality, availability and/or integrity of an organisation’s information. Organisations should focus on the three core areas that will help avoid a data breach: people, processes and technology. There’s much to learn about how those three facets contribute to cyber security from studying news reports when security fails.”
It is critical to understand the everyday trends and traits of data breaches: why and how they take place, the types of breaches that can occur, what makes attacks successful, and what measures an organisation should take to avoid or recover from a data breach. Information security professionals hoping to gain a better appreciation of these traits are encouraged to take a look at IT Governance’s book of the month: Managing Information Security Breaches – Studies from real life
by Michael Krausz.
is a thought-provoking guide to preparing for a data breach, and gives real-life examples of breaches to help organisations prepare for incidents they may face in the future. It explains how data breaches and incidents can be dealt with, and the role ISO 27001:2013 has to play in keeping organisations secure.
The ISO 27001:2013
standard advocates the three pillars of cyber security: people, processes and technology. By implementing an ISO 27001-compliant information security management system (ISMS), organisations address the key risk areas and take a systematic approach to monitoring, maintaining and improving their information security.
IT Governance supports ISO 27001 compliance projects with a range of ISO 27001 packaged solutions
. Each solution provides a carefully selected mix of training, tools and consultancy services designed to help organisations with different internal competences, skills and resources to implement and achieve compliance with the Standard.
To find out more about IT Governance’s book of the month
or ISO 27001 compliance solutions
, please visit the website
, email firstname.lastname@example.org
or contact the team direct on +44 (0)845 070 1750.