Re: ISO 17799/IEC 27001

[Tammy Clark <isttcx () LANGATE GSU EDU>]

Hello Jim/et al...

We did use the standard to further develop our infosec
program/initiatives for the past three years and at this point, we are
also pursuing certification in an incremental fashion (ISO 27001).

Best regards,

----------------------------------------------------------
Tammy L. Clark, CISSP, CISM, CISA
Chief Information Security Officer
Georgia State University
tlclark () gsu edu
770-480-8836 (cell)
404-463-9612 (office)
> > > "Taylor, James R" <JimTaylor () MISSOURISTATE EDU> 12/04/06 10:55 AM
I am in the process of developing a security program based on ISO
17799:2005.  If I remember correctly from Educause, Georgia State
University used it as a basis for their program.



__________________________

Jim Taylor

Technology Projects Coordinator

Computer Services

Missouri State University

417-836-5226

http://computerservices.missouristate.edu
<http://computerservices.missouristate.edu>



________________________________

From: George Farah [mailto:george.farah () QUEENSU CA]
Sent: Monday, December 04, 2006 9:51 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] ISO 17799/IEC 27001



Good Day,



Is anyone aware of any university who used or adopted ISO/IEC
17799/27001 in implementing a security program?



Thanks and have a great day



George Farah, GIAC/GSEC Gold
Information Systems Security Manager
IT Services
Queen's University
Kingston, Ontario, Canada k7l 3n6
Tel 613 533-2638
Fax 613 533-2168
george.farah () queensu ca <mailto:george.farah () queensu ca>