What is SI ISO 17799
SI ISO 17799 Information Security Management System certification is one of the vital tools to identify, manage and minimize the range of threats to which information is regularly subjected. Based upon BS 7799 and adopted in its' entirety by SII as well as ISO, SI ISO 17799 also helps organizations limit the risk and subsequent financial exposure to that risk by significantly reducing the size and significance of threats.
SI ISO 17799 covers a range of threats including:
- Internal threats
- External threats
- Accidents
- Malicious actions
- Industrial sabotage
SI ISO 17799 is a standard that contains over 100 security controls to help you identify elements of your business that impact on information security. and includes specifications to which your organization can be assessed.
SI ISO 17799 is organized into 10 sections:
- Security policy
- Organization of assets and resources
- Asset classification and control
- Personnel security
- Physical and environmental security
- Communications and operations management
- Access control
- Systems development and maintenance
- Business continuity management
- Compliance to avoid breaches of any criminal or civil law
SI ISO 17799 and e-commerce:
The SI ISO 17799 Code of Practice for Information Security Management, forms the basis of the IT security sections for the newly introduced Standard for electronic commerce in Israel. Additionally, according to the newly passed "Digital Signature" legislation (October 2001), SI ISO 17799 is a requirement for organizations wishing to be Certificate Authorities in Israel.
For all inquiries regarding System Certification, Please Contact:
Reuven Rabinovitz, Director, Quality & Certification Division
Tel: 972-3-6465194