October, 2008 Newsletter Articles

Employees are Biggest Security Threat

Oct 8, 2008 in Newsletter | 0 comments

According to research by Secure Computing, 80% of IT directors said in a recent survey that insider threats were their biggest security danger. Security problems created by employees are far more serious than the threats posed by external hackers and criminals, the new research reports. Less than one in five respondents said external threats from hackers are more dangerous. This could be due in part to 37 % of respondents saying they have experienced a leak of sensitive information in the past year. Email was identified by 34 % of respondents...

Read More

ISO 50001 Planned for Energy Management

Oct 8, 2008 in Newsletter | 0 comments

The first meeting of ISO’s new project committee PC 242, which is developing an International Standard on energy management, was held last month in Washington, DC, USA. The future ISO 50001 will establish a framework for industrial plants, commercial facilities, or entire organizations to manage energy. Targeting broad applicability across national economic sectors, the standard could influence up to 60% of the world’s energy use. The meeting was attended by delegates from the ISO national member bodies of 25 countries from all...

Read More

ISO/TR 90005 for Applying ISO 9001

Oct 8, 2008 in Newsletter | 0 comments

The new ISO/TR 90005:2008, Systems Engineering – Guidelines for the Application of ISO 9001 to System Life Cycle Processes, will be a valuable tool for applying the ISO 9001:2000 requirements to the acquisition, supply, development, operation, and maintenance of IT systems and related support services. ISO/TR 90005 adopts the IT system life cycle processes of ISO 15288 as a starting point for system development, operation, or maintenance, and identifies the equivalent requirements in ISO 9001:2000 that have a bearing on the...

Read More

Developing User Software Documents

Oct 8, 2008 in Newsletter | 0 comments

Anyone who uses application software needs accurate information about how the software will help the user accomplish a task. The documentation may be the first tangible item that the user sees and therefore influences the user’s first impressions of the software product. ISO 26514:2008 – Systems and Software Engineering – Requirements for Designers and Developers of User Documentation, covers the phases involved in designing, specifying, and producing user documentation. It is divided in two parts: 1. The first part covers...

Read More

Information Security in the Health Sector

Oct 8, 2008 in Newsletter | 0 comments

The highly sensitive area of personal health information, and how best to protect its confidentiality and integrity, while assuring its availability for healthcare delivery, is the issue addressed by ISO 27799:2008, Health Informatics – Information Security Management in Health using ISO 27002. ISO 27799 applies to health information in all its aspects – whatever form the information takes, whatever means are used to store it, and whatever means are used to transmit it. The standard specifies a set of detailed controls for...

Read More