Development strategies of the Information Security Management Systems (ISMS) standards for organizations

BS7799 is the British standard.BS7799 comes in two parts ISO/IEC 17799:2000 (part 1) and BS7799- 2002 (part 2) that provides guidelines for safeguarding an organizations asset.It is the intention of both standards to be a reference point from which information security management can be effectively and securely implemented.Assuring the confidentiality, integrity and availability of all information assets continue to be paramount during all phases of implementation.As the Internet community drives business further we are finding that it is network security, and in particular, Internet security, which is at the forefront of business network management and data integrity assurance, practices.The trust of Internet user(s) especially for e-commerce and online businesses relies on a strong security mechanism (e.g. digital certificate) offered by service providers. On the other hand a serious security commitment is required from higher management to the system administrator to endorse best method practices, defined in ISO 17799 / BS 7799 charter. It is at “ground zero” where the information security battle will be fought,with both ISO17799 and BS7799 providing the frameworks for designing and implementing a secure strategy created specifically to protect every facet of the business and user environment.