BSI achieves global accreditation for BS 25999 certification
BSI Management Systems has announced that is has been independently accredited to deliver worldwide certification against BS 25999, the business continuity management standard. BSI’s accreditation has been granted by UKAS (United Kingdom Accreditation Service), the globally recognized accreditation body.
BSI was the first certification body in the world to register clients to the standard in November 2007 and it can now offer a fully-accredited certification scheme.
Vodafone UK First to Achieve BS 25999 Business Continuity Management Certification
Vodafone UK has become the world’s first mobile operator to achieve BS 25999 certification, the industry leading standard for business continuity management systems. Vodafone UK has achieved the standard in recognition of the robust processes it has put in place to ensure continuity of service for enterprise and consumer customers in the event of unexpected incidents, such as power failures or natural disasters.
BSI British Standards announced the forthcoming publication of ISO 9001: 2008.
ISO 9001, the world’s most established quality framework, has undergone a rigorous review by industry experts and the updated version will be available from BSI British Standards on 17 November 2008. Visit www.bsigroup.com/bseniso9001 for more information.
BSI Updates Specification on Infrastructure Asset Management
BSI updated the PAS 55-1:2008 Asset management specification for the optimized management of physical assets. This Publicly Available Specification 55 (PAS 55) was first published in 2004 in response to demand from industry for a standard for asset management. It is applicable to any organization where physical assets are a key or a critical factor in achieving its business goals. The updated 2008 revision reflects the increasing international consensus about required good practices in the management of such physical assets.
PAS 55-1 specifies the requirements for an asset management system for the management of physical assets and asset systems over their life cycle.
New ISO/IEC 27005:2008 Information Security Risk Management Standard Published.
ISO/IEC 27005:2008 is the new international standard that describes the information security risk management process and associated actions, and has been written to help manage these business-critical risks. It provides guidelines for information security risk management in an organization, supporting in particular the requirements of ISO/IEC 27001.
Whatever size organization you work in, BS ISO/IEC 27005 is likely to be applicable, as it is relevant to all managers and staff that intend to manage risk to the organization's information security.
The Draft BS 25777 Code of practice for ICT continuity now available for public comment
In most organizations, the processes that deliver products and services depend on information and communication technology (ICT). Disruption to ICT can therefore constitute a strategic risk, damaging the organization's ability to operate and undermining its reputation. The consequences of a disruptive incident vary and can be far-reaching, and might not be immediately obvious at the time.
BS 25777 provides recommendations for ICT continuity management within the framework of business continuity management.
ISACA Extends The Deadline for CGEIT Grandfathering Application to 31 December 2008
ISACA has announced on their website that the deadline for the for CGEIT grandfathering application has been extended to the 31st December 2008. The CGEIT grandfathering scheme is aimed at highly experienced professionals who have had a significant management, advisory and/or assurance role relating to the governance of IT. Individuals that qualify can apply for certification as a CGEIT without being required to pass the CGEIT examination.