Get documents about "??? ????? ????? ?????????
Document Sample
ISO 27001:2005)
( )
aliabdulsattar1976@yahoo.com ahmedhanyi@yahoo.com
ISO 27001
(ILM)
ISO 27001
(ISO 27001)
(ISO 27001)
ISO27001
1
ISO27001
ISO
ISO27001:2005
ISO 27001
ISMS
ISO Information Security Management System
ISO 9001:2000 ISO27001
ISO14001:2004
Arnason & Willett, 2008,5
ISO27001
ISMS
ISO ISMS
ISO27001
ISO 27001 وهي الجهت المانحت للشهادة
2
ISO27001
BS7799 ISO27001
2991 BS7799 2991
C
2991
1222 C
2991 BS7799
2999 BS7799
BS7799
BS7799
( www.sapphire.net:2007
1221 BS7799
ISO27001
1221
BS7799 ISO17799:2000
(Calder & Watkins,2008,35
ISMS ISO27001
ISO27001:2005
ISO27001
ISMS
299 99 22
Plan – PDCA ISO17799
Do – Check – Act
3
ISO27001
CSIA,2007,3 CSIA
ISMS 2
1
9
4
1
6
ISMS 1
ISMS 1
ISMS 9
ISO27002 ISO ISMS
Arnason& Willett,2008,8 ISO27001
2
1
9
4
1
6
1
1
9
22
22
21
ISO27001 2
Cyber Security Industry Alliance
4
ISMS
2
ISO27001
Source : Herve' Schaner , 2007, ISO 27001Certification, Eurose Forum,
Paris, www.hsc.fr, P:2 .
ISO27001:2005
Hinson ,2008, 3
2
1
9
4
1
6
5
FIPS
Federal Information Processing Standers
ISO27001 1224
1 ISMS
2
Source: Arnason , Sigurjon Thor & Willett, Keith D. ,2008, How to
Achieve 27001 Certification An Example of Applied Compliance
Management, Taylor& Francis Group LLC. New York, USA. P3.
www.intertek-semkocertification,se , 2007
Confidentiality 2
ISO27001 Integrity 1
Availability 9
ISO27001
6
42 12
(wind :2004:2)
(http//:arabinfo.blogsspot.com:4-5)
(wind : 2004 :3)
7
(immediate access)
:2) http://encyclopedia.thefreedictionary.com(
(www.sun.com:2)
8
12222
(disposition) (retention) (preservation)
(www.management1.com:2)
(Thompson, 2005,2 )
2
just in case
"near-line retention"
"near-line solution "
1
12
9
(simple time- based methodology)
(users class) (query –log)
(not accessed since
(logical growth – management partitioning strategy)
(drill to detail)
9
(restore)
(drill –to –detail )
(offline archiving) 4
(primary server
(metadata
(Thompson :2005 :2-3)
(total coast of ownership)
(service-level tier)
10
(Nicolson:2006:80)
(Organizational Agility )
(www.businesssolution.bell.ca:2)
(storage infrastructure)
(policy-based
management)
9
(Wind, 2004,4)
11
(bright store)
(INTEGRATED STORAGE RESOURCE
(storage area network MANAGEMENT)
management)
تىحيذ األعمال
ووجهت نظز تقانت
المعلىماث
محتىي األعمال
االتممتت
أعمال الخزن إدارة الخزن
المزكزة الذكيت
إدارة وحمايت
البياناث
مستجيب قيادة األعمال
المستىي المستىي الثالث المستىي المستىي الزابع
9
Source: Wind, Stephen , 2004, moving beyond information life cycle management
www.managementworldline.com) :P5
(hierarchical storage
management)
12
reusable
function
ISO27001
ISO27001
:
ISO2001 2
1
ISO27001 9
ISO 27001:2005
13
2
ISO 27001
1
ISO27001 9
ISO27001
4
ISO 27001
4
ISO27001 1221 4
ISO27001
ISO17799:2005 ISO27001:2005
14
(ISO 27002:2005)
1 4 (ISO 27001)
ISO 27001
2 1 4
9 4
2 9 4
1 9 4
9 9 4
15
ISO 27001
1 1 9 4
ISO27001
2 1 1
(ISO 27001:2005) 2
1
9
(ISO 27001)
(ISO 27001)
4
1
2
(ISO 27001)
16
1
9
(ISO 27001)
ISO
Source:
1. Alan Calder & Steve Watkins , 2008, IT GOVERNANCE A Manager’s Guide
to Data Security and ISO27001/ISO 27002 , 4th edition, London and
Philadelphia , British.
2. (http//:arabinfo.blogsspot.com
3. Arnason , Sigurjon Thor & Willett , Keith D. ,2008 , How to Achieve 27001
Certification : An Example of Applied Compliance Management, Taylor &
Francis Group, LLC , USA.
4. CSIA , 2007, ISO 27001: Get The Facts , www.csialliance.org .
5. Herve' , Schaner , 2007, ISO 27001Certification, Eurose Forum, Paris,
www.hsc.fr .
6. Hinson, Gary , 2008 , ISO27001 Security : The Financial Implications of
Implementing ISO/IEC 27001&27002, a generic Cost Benefit Model , Isect.
Ltd , www.iso27001security.com .
7. Nicolson, Rick , 2006, information life cycle management in the upstream oil
gas industry ,fristbreak ,vol24, january, (www.fristbreack.org)
8. Thompson ,Robert , 2005, information life cycle management (ILM) for data
Werhousing www.dmreview.com
9. Wind, Stephen , 2004, moving beyond information life cycle management,
www.managementworldline.com
10. http://encyclopedia.thefreedictionary.com
11. http://searchyahoo.com
12. www.businesssolution.bell.ca:2
13. www.intertek-semkocertification,se , 2007
14. www.management1.com
15. www.sapphire.net , 2007, The Principles of ISO 27001 : including differences
from BS7799: 2000
16. www.sun.com
17
