ISO27001/2: The International Standard for Information Security
ISO 27001 and ISO27002 (together known as ISO27001/2) are a broadly-accepted international standard for information security that was established by the International Standards Organization and offers a broad set of best practices for information security controls across organizations of any type. Unlike regulations and mandates designed to support specific types of data (such as
PCI DSS) or specific business processes (such as
SOX), the ISO27001/2 framework is intended to assist all organizations - commercial, governmental or nonprofit - in the process of managing information security. The framework is comprised of twelve security clauses that include 39 security categories with hundreds of control objectives overall. Technically identical to ISO 17799, it was renumbered in 2007 to conform to the ISO 27000 family numbering scheme.
The best practices offered by ISO 27001/2 are guidelines that address initiating, implementing, maintaining and enhancing the security objectives and controls within an organization's information security program.
The ISO27001/2 Business Challenge
Perhaps the greatest challenge presented by ISO 27001/2 rests in its broad scope of individual security controls. These controls span the IT infrastructure, calling for the monitoring and analysis of data generated by all systems, network appliances and security solutions across the enterprise. Thus, when implementing controls according to ISO 27001/2, an organization must implement, collect and process a variety of different types of data across the infrastructure. Traditional log management and SIEM solutions that rely only on event data are not adequate to meet the rigorous compliance audit and reporting requirements of ISO27001/2, because they lack the ability to collect and correlate other types of critical security data: system asset and configuration data, known vulnerabilities, performance metrics, and network flow data.
eIQ's SecureVue
security, risk and audit management platform combines
security information and event management (SIEM) and compliance automation to help organizations address the greatest number of ISO27001/2 controls. SecureVue contains over 400 reports mapped to individual sections of the ISO27001/2, and also contains a comprehensive compliance library - containing over 2,500 technical and functional controls - to enables organizations to define, monitor and measure ISO27001/2 system configuration compliance.
By collecting, archiving, correlating, analyzing and reporting on log, vulnerability, configuration, asset, performance and network flow data, SecureVue merges the complex monitoring, testing and auditing demands of ISO27001/2 into a single solution. The automated end-to-end correlation, along with built-in analytics, makes compliance auditing for the ISO27001/2 standard an easily manageable task.
