JancoJanco Forum

News Feed

Feed
Description
 Janco Mobile Pages

Join Now
Home
Search
Templates
Salary Survey
HandiGuides
Job Descriptions
Individual Policies
Compliance Tools
White Papers
Update Service
Bundles & Special Offers
Software
Promotions

DRP, BCP, and Security Template and Audit BundleDisaster Recovery & Business Continuity Template, Security Template, Disaster Recovery & Business Continuity Audit Program, and Security Audit Program Bundle

This bundle is fully compliant with Sarbanes-Oxley, HIPAA, PCI-DSS and the ISO 27000 Series (ISO 27001 and ISO 27002).  It has been updated to reflect all of the recent legislation and other mandated requirements.

The Disaster Planning and Business Continuity Template has been selected by over 2,000 enterprise as the foundation of their DRP and BCP programs.

The Security Manual Template has just been updated to address issues such as SmartPhone and other PDAs

The Security Audit Program contains over 400 unique tasks divided into 11 areas of audit focus which are then divided into 38 separate task groupings. The audit program is one that either an external or an internal auditor can use to validate the compliance of the Information Technology and the enterprise to ISO 27000 (Formerly ISO 17799),Sarbanes-Oxley, HIPAA, and PCI-DSS.

The Disaster Recovery / Business Continuity Audit program identifies control objectives that are meet by the audit program.  There are 36 specific items that the audit covers in the 11 page audit program. 

Order Now

 

 

The ISO 27000 series is a set of individual standards and documents defined as follows:

·         ISO 27001 - The specification for an Information Security Management System (ISMS) replaced the BS7799-2 standard. 
                                                         Order Now

·         ISO 27002 – The ISO 27002 standard is a renaming of the ISO 17799 standard, which is a code of practice for information security.  It outlines controls and control mechanisms, which may be implemented subject to the guidance provided within ISO 27001. 
 

                                                                Order Now

·         ISO 27003 – This is a PROPOSED Standard, which has yet to be completely defined.  This will be the official number of a new standard intended to offer guidance for the implementation of an ISMS (Information Security Management System).  The purpose of this proposed development is to provide help and guidance in implementing ISMS.  This will be a quality control standard when it is released.  ISO 27003 will focus on utilizing the Plan-Do-Act-Check (PDCA) method, when establishing, implementing, reviewing, and improving the ISMS.

                               

·         ISO 27004 - This is the designated number for a PROPOSED standard covering information security, system management, measurement, and metrics.

·         ISO 27005 – This is the name of a PROPOSED standard emerging standard covering information security risk management.  As with the other standards within the ISO 27000 series, no firm dates have been established for its release.  However, it will define the ISMS risk management process, including identification of assets, threats and vulnerabilities.  This is the ISO number assigned for an emerging standard for information security risk management.

·         ISO 27006 - This standard offers guidelines for the accreditation of organizations that offer certification and registration with respect to ISMS.

 

 

                                                         Order Now

 

 

 

 

 

Disaster Planning/Business Continuity  and Security Auditing News

05/09/2008 - Availabe Consultants Excellent IT Audit/Sox/Information Security ...
... Risk Assessment & Management, Designing of Security Policies & Procedures, ITIL/ITSM audit/implementation, developing Business Continuity Plans (BCP), Disaster Recovery procedures (DRP) and ISO17799/ISO 27001 Consulting. ...- more information

 

05/08/2008 - Opening for Manager-Information Security - Bangalore - MNC Bank
BCP/DRP: · Ensure ISMs test/coordinate the disaster recovery activity in an event of a disaster. · Review the Business Continuity Process inline with Resource Management support · Track & Publish Change Management process across BUs ...- more information

 

05/08/2008 - {c2c-jobs-usa} URGENT REQUIREMENT FOR UNIX ADMIN LOCAL PREFERRED
Scripting experience, H/W (p series, x series), partitioning & virtualization, software and hardware upgrade and AIX security. · Experience with Sarbanes-Oxely and audit compliance, disaster recovery, remote access configuration and ...- more information

 

05/07/2008 - Tealeaf Introduces cxResults - Advanced Customer Behavior Analysis
Centralized Management: As the web becomes the primary vehicle for doing business and demands on sites increase, CX includes centralized management tools for configuration rollback, audit and security, and disaster recovery.- more information

 

05/06/2008 - Product Manager, Head of Managed IT Services - Church ...
Product Manager, Head of Managed IT Services... managed IT office, Disaster Recovery, BCP etc). The Product Manager, Head of Managed IT Services must have... (From CityJobs.com)- more information

 

05/05/2008 - Board of Trustees Meeting May 12-14
(Committee on Audit) Audit topics include:. Information Security: review of the systems in place to protect the confidentiality, integrity, and access/availability of information including systems to limit collection of information, ...- more information

 

04/29/2008 - IT Auditing - Certified Information System Auditor - YI.Auditor
Candidates for a CISA certification must pass the examination, agree to adhere to ISACA’s Code of Professional Ethics, submit evidence of a minimum of five years of professional IS auditing, control, or security work, and abide by a ...- more information

 

04/29/2008 - IT Supervisor
Following the network standards and security controls to ensure audit security compliance and controls; 4. Assists in the design, implementation and maintenance of system; 5. Inventory management of software licenses, software, ...- more information

 

04/26/2008 - Improvements needed in controls over high school diplomas: Audit ...
A state audit of the Jackson County School Board finds that it needs to improve internal controls over high school diplomas; develop a cell phone policy for employees; add to its disaster recovery and security controls for information ...- more information

 

04/24/2008 - IT Auditing: Information Technology Audits (2007)
... Infrastructure Controls - Infrastructure Controls: Security - Infrastructure Controls: Communications - Business Process Controls - System Development - Business Continuity Planning and Disaster Recovery - Usinf Software to Audit ...- more information

 

04/24/2008 - 8 Years Left to Prototype Disaster Recovery for 2016 Confirmed ...
Here you will get software to help with BIA and risk analysis, as well as links to tools/services to help you create, maintain and audit the plan itself. Whether you are entirely new to business continuity and disaster recovery planning ...- more information

 

04/11/2008 - Business Continuity Market Comes of Age as 2008 Event better than ever
The conference & exhibition attracted 2457 visitors (pre- ABC audit) from top level positions across a wide range of industries including local government, the forces, pharmaceutical, finance, telecoms and aerospace. ...- more information

 

04/11/2008 - Network Engineer in Richmond VA
Monitor intrusion detection devices and adjust intrusion parameters to fine tune alerts in conjunction with TAX IT Security Audit. Apply or assist in applying Win2K and UNIX security related standards and patch levels that lock-down the ...- more information

 

04/11/2008 - IT Audit Specialist
Performs control reviews on systems development operation, programming, security procedures and standards in support of internal and external audits. • Reviews system backup disaster recovery and maintenance procedures and ...- more information

 

04/08/2008 - The Financial Controller
Define and manage Unix architecture infrastructure development, administration, monitoring, maintenance and security. • Prepare, produce and manage disaster recovery policies, procedures, test plan and jobs of Centralized Data Storage ...- more information

 

04/08/2008 - Conventional Awarneness
To ensure that these issues were addressed, there are five sections on the questionnaire, which includes Risk Assessment, Operations Security & Risk Management, Audit/Independent Review Program, Disaster Recovery/ Business Continuity ...- more information

 

04/03/2008 - Security Blueprint
What Is All This Integrity Business? * How to get employees passionate about disaster recovery * Backups: Understanding How Performance Matters * Top 10 Security Trends for 2008 * Learn Best Practices for Database Auditing. and more. ...- more information

 

03/30/2008 - Security standards: a stitch in time
Considering the fact that most organisations have to undergo a mandatory surveillance/review audit on a quarterly or half-yearly basis, it is just a matter of months before existing BS 7799-2 certificates undergo the transition ...- more information

 

03/27/2008 - Latest Information Security News Roundup
Audit reaffirms need for more IT staff at OU http://www.athensmessenger.com/main.asp?SectionID=1&SubSectionID=273&ArticleID=9229. COMMENTARY. Mozilla CEO blasts Apple for putting security of the internet at risk ...- more information

 

03/27/2008 - Physical Security and Information Management
Still other services hybridize with our RSA technology to secure these recordings, and provide audit trails around how they were used, and by who. The trends are pretty clear to me, though. There's going to be a lot more of this kind of ...- more information

 

03/17/2008 - Senior IT Security Executive - ISMS
Perform DRP assessment - To conduct IT Risk assessment and management - Responsible for IT Security awareness and training - To prepare and review assessment reports, as well as present assessment findings with recommendations to the ...- more information

 

03/15/2008 - Disaster Recovery Plan For Your Business?
We are always trying to improve our disaster recovery plan in case a serious problem occurs that could disrupt the normal working service that we provide. In situations like : flooding, fire, serious computer malfunction, IT security ...- more information

 

03/11/2008 - Systems Development Lifecycle (SDLC)
System accreditation is usually supported by a technical or security evaluation (or both), risk assessment, contingency plan, audit, and acknowledged policies of acceptable user behavior. Reaccreditation should occur after any ...- more information

 

02/26/2008 - IT Manager: Banking/Information Security/Disaster Recovery/Audit
Location: Minneapolis,MN Source: Jobs.net.- more information

 

12/01/2007 - IT Spending Falls - Is a Recession Ahead
Audit (IDG News Service) -- The outlook for IT spending in the new year is "unusually bad," according to ChangeWave Research LLC, which said its latest quarterly tracking survey of corporate users shows that an increasing number of ...- more information

 
 

News HTML
SAFE Shopping

© 2008 Janco Associates, Inc. - ALL RIGHTS RESERVED -- Revised: 05/02/08