Editor?s Note:? Discussed and attached below are four cyber security documents prepared by the the UK government:
1.? Cyber risk management: a board level responsibility, attached here, provided jointly by CESG which is?the information security arm of GCHQ and is the UK Government?s National Technical Authority for Information Assurance, the Center for Protection of National Infrastructure (CPNI), and the Cabinet Office.
2.? 10 steps to cyber security: executive companion, attached here, prepared by CESG and supported by CPNI,?the?Cabinet?Office, and the?Deparment for Business Innovation & Skills (BIS).
3.? 10 steps to cyber security: advice sheets, attached here, prepared by CESG and supported by BIS, CPNI, and the Cabinet Office.
4.? Holistic Management of Employee Risk (HoMER), attached here, prepared by PA Consulting Group and CPNI.
The short descriptions of the documents below are from the BIS.
The new guidance provides advice from security and intelligence experts across government about how to defeat most cyber attacks. A company?s data, its intellectual property, needs to be protected. With basic cyber security systems in place, at least 80 per cent of cyber attacks will bounce off. The guidance is aimed at company boards and their Chairs and Chief Executive Officers to embed the idea that this is a strategic risk that needs to be managed at board level.
Cyber risk management: a board level responsibility.? Aimed at senior executives, this provides high level questions which will help to determine critical information assets, support strategic level risk discussions and help them ensure the right safeguards and cultures are in place.
10 steps to cyber security: executive companion.? Offers guidance for business on how to make the UK?s networks more resilient and protect key information assets against cyber threats. It focuses around key points of risk management and corporate governance and includes some anonymous case studies based on real events.
10 steps to cyber security: advice sheets. Provides detailed cyber security information and advice for 10 critical areas, both technical and process/cultural areas. Summarises each issue, outlines the potential risks and provides some practical measures and advice to reduce these risks. The material integrates the ?Top 20 Critical Controls for Effective Cyber Defence? as endorsed by CPNI.
Holistic Management of Employee Risk (HoMER) is new guidance to help you manage the risk of employees? behaviour damaging your business. Employee risk is defined as counterproductive behaviour, whether inadvertent, negligent or malicious, that can cause harm to an organisation.
The guidance sets out:
- Principles, policies, procedures and examples of good practice which help manage the risk of counterproductive behaviour in the workplace
- Ways to strengthen compliance with legal and regulatory frameworks
- A framework to help improve trust amongst employees, customers and shareholders.
The holistic use of targeted security measures and interventions (e.g. information, personnel and physical) will help you spot high-risk workplace behaviour and reduce the threat of employees carrying out malicious attacks.
This guidance is for board members and the managers of risk in your organisation.
Source: http://www.thecre.com/fisma/?p=3131
FedEx Green Coffee Bean Extract the voice september 11 adam levine 9/11 Memorial jessica simpson
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.