|
USER GROUP
ACTIVITIES
Invitation
Any research and paper presentations pertaining to
definition and quantification of Information Value and
Information Assets is welcomed. Anyone who wishes to present
the latest research is invited to submit a paper to
7799ug@scienton.com
June 2005
Toronto, June
14th
The Third Annual Canadian ISO17799 User Group Conference was held in the
Metro Toronto Convention Center as a part of the Infosecurity
Canada Conference & Exhibition.
The User Group presentations can be viewed
here.
June 2004
Toronto, June
1st
The Canadian ISO17799 User Group Meeting was held in the
Metro Toronto Conference Center as part of the Infosecurity
Canada Conference & Exhibition.
The User Group presentations can be viewed
here.
January
2004
Toronto, January
30th
The User Group Conference held in Toronto on January 30 was
a great success. A panel of Industry experts and
practitioners delivered many exciting and in-depth
presentations.
Here, you can look at the
Conference brochure.
The Conference presentations can be viewed
here.
May
2003
Toronto, May 8th
The 1st World ISO17799 User Group Conference was held on May
8th, at the Old Mill Inn in Toronto.
This was a full day event with very distinguished list of
guest speakers from Canada and overseas.
December 2002
Toronto, December 5th
Mr. Marc Duez presented the “Trust Model – Crucial Business
Component” approach. Marc’s presentation defined a new
approach to solve new trust models and at the same time
protect the privacy. This interesting presentation generated
a discussion around the new trust model paradigms and Public
Key Infrastructure (PKI). New Government PKI implementation
raised a number of privacy issues. In addition, culture and
the level of trust towards companies has been examined.
It was nice to see that the ISO17799/BS7799 user group is
the place where security management system controls are
discussed. Experiences exchanged and help provided to
develop proper management system tailored to specific
industry vertical need.
At the end Mr. Predrag Zivic has updated the group on “CIO
Summit” activities. The main message was that the new IT is
being redeveloped around new it Governance and business
process. As ISO1799 defines business process controls, it
was nice to recognize that the ISO17799 group is the leader
in new IT Governance approach. The ISO17799 is the leader in
creating new trust for the information and ultimately
corporate governance. The ISO17799 user group will continue
its work around the ISO17799 implementation processes and
proper decision making.
October 2002
Toronto, October 10th
All participants agreed that the meeting was very
interesting, especially the discussion after the
presentations. Meeting was attended by renown group of CSO's,
managers and consultants.
Mr. Craig Heier from BSi has presented the most recent
overview of ISO 17799 and the BS7799-2:2002 published in
September 2002. The Group was excited about the newly
released audit guidelines, as it finally demystifies the
standard approach and highlights the standards business
process orientation. Therefore, the implementation of the
standard and applicability within Canada and North America
is logical and beneficial to businesses.
The ISO17799 relation to other security standards and the
standards role in the corporate governance model has been
presented by Mr. Predrag Zivic.
Both presentations initiated discussions identifying
challenges of security modeling in today's' corporate and
governmental environments. Some of the challenges were: "Who
is the Information Owner?", "How to sell security frameworks
to CEO's?" and "What is the information value?".
The group has suggested that security was treated in the
past as the technology challenge and in today's world it
become a business process and management task.
Mr. Predrag Zivic's presentation showed that in spite of
differences of various security management methodologies all
prescribe almost the same process and approach to handling
security issues.
|
