Educause Security Discussion mailing list archives

Re: ISO 17799/IEC 27001

From: "Crawford, Charles D" <ccrawf () KU EDU>
Date: Mon, 4 Dec 2006 10:36:59 -0600

The University of Kansas is doing the same and is actually pursuing
accredidation against the 27001 standard.  
 
Charles Crawford, CISSP, GSNA, C|HFI
IT Security Officer
University of Kansas
ccrawf () ku edu
785-864-0491
www.security.ku.edu


________________________________

From: St Clair, Jim [mailto:Jim.StClair () GT COM] 
Sent: Monday, December 04, 2006 10:23 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] ISO 17799/IEC 27001



I would like to add to George's question and add what universities may
have implemented or adopted the ISO standards, and how many are actually
pursuing full-blown certification through ISO 27001? 

James A. St.Clair, CISM 
Sr. Manager 
Global Public Sector 
Grant Thornton LLP 
(703) 637-3078 (office) 
(703) 727-6332 (mobile) 
(703) 837-4455 (fax) 

________________________________

From: George Farah [mailto:george.farah () QUEENSU CA] 
Sent: Monday, December 04, 2006 10:51 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: ISO 17799/IEC 27001

Good Day,

Is anyone aware of any university who used or adopted ISO/IEC
17799/27001 in implementing a security program?

Thanks and have a great day

George Farah, GIAC/GSEC Gold
Information Systems Security Manager
IT Services
Queen's University
Kingston, Ontario, Canada k7l 3n6
Tel 613 533-2638
Fax 613 533-2168
george.farah () queensu ca <mailto:george.farah () queensu ca> 

 

________________________________

In accordance with applicable professional regulations, please
understand that, unless expressly stated otherwise, any written advice
contained in, forwarded with, or attached to this e-mail is not intended
or written by Grant Thornton LLP to be used, and cannot be used, by any
person for the purpose of avoiding any penalties that may be imposed
under the Internal Revenue Code. 

________________________________

 This e-mail is intended solely for the person or entity to which it is
addressed and may contain confidential and/or privileged information.
Any review, dissemination, copying, printing or other use of this e-mail
by persons or entities other than the addressee is prohibited.  If you
have received this e-mail in error, please contact the sender
immediately and delete the material from any computer.

Current thread:

ISO 17799/IEC 27001 George Farah (Dec 04)
- <Possible follow-ups>
- Re: ISO 17799/IEC 27001 Taylor, James R (Dec 04)
- Re: ISO 17799/IEC 27001 Shirley Payne (Dec 04)
- Re: ISO 17799/IEC 27001 Mclaughlin, Kevin L (mclaugkl) (Dec 04)
- Re: ISO 17799/IEC 27001 St Clair, Jim (Dec 04)
- Re: ISO 17799/IEC 27001 Crawford, Charles D (Dec 04)
- Re: ISO 17799/IEC 27001 Wilson Dillaway (Dec 04)
- Re: ISO 17799/IEC 27001 George Farah (Dec 04)
- Re: ISO 17799/IEC 27001 Crawford, Charles D (Dec 04)
- Re: ISO 17799/IEC 27001 Tim Lane (Dec 04)
- Re: ISO 17799/IEC 27001 Gary Dobbins (Dec 04)
- Re: ISO 17799/IEC 27001 Tammy Clark (Dec 04)
- Re: ISO 17799/IEC 27001 Jim Dillon (Dec 04)