chapter  2
20 Pages

Organization of Information Security

WithTHOMAS R. PELTIER

The sixth clause of ISO 27002 focuses on the information security responsibilities of management within an organization. Specifically, it emphasizes the necessity of management commitment to the security of the organization’s information resources. The importance of this topic is revealed in a cursory review of the 10 critical success factors identified in ISO 27002. Organizing for information security is

Contents The Internal Information Security Organization ..................................................18 Management Support ..........................................................................................22 Information Security Coordination and Communications ..................................24