• Blog Francisco Barrionuevo
  • Blog Novasoft
  • Novaschool
  • Softfood
  • WiWave
  • Facebook Novasoft
  • Flick Novasoft
  • Videos en Youtube
  • Documentos en Issu

Novasoft establishes the first Information Security Management System (ISMS) certificate according to the UNE 71502 regulation in Andalusia

Friday, 01 July 2005 00:00
E-mail

Novasoft, through its Information Security Section, led the project that has concluded with the Information Security Management System certificate of ETICOM (Andalusia Communication and Information Technologies Entrepreneurs Association) according to the AENOR UNE 71502:2004 regulation. Thus, ETICOM becomes the first organisation in Andalusia to receive this security certification and the eighth in Spain.

Novasoft led the project which has considered several stages in its development: the risk assessment, following the MAGERIT methodology, the assessment in the establishment of the safeguards, the design of the security policy and formalising and implementing the ISMS following the security good practice code, ISO 17799 regulation.

Finally, the project considered the execution of an internal audit of the system; that included a complete security assessment to establish the response when facing possible internal and external attacks. The project adopted the security recommendations that arose from the audit.

Thanks to the achievement of this certificate, ETICOM will be able to efficiently manage the information security and protect its own data and its associates’ data when facing the existing risks within and outside the association. It will also be able to improve its relationships with associate companies, the public administration and the suppliers, thus guaranteeing the security of the communications.

About the UNE 71502 security certification

The new Information Security Management Systems (ISMS) AENOR certification according to the INE 71502:2004 Regulation, includes one hundred and twenty seven controls developed in the 17799 ISO. These controls are grouped by different aspects with reference to the management of the information security, such as: security policy, security organisation, classification and monitoring of information assets, management of the information and personnel security, physical and environment safety, management of communications and transactions, access monitoring, maintenance and development of systems and management of the business continuity.

Novasoft, with more that 12 years of experience in the ICT sector, is part of the “Information Technologies” AENOR JTC1/SC27 Subcommittee where it has participated in the development group of the UNE 17799 and UNE 71502. The Novasoft Security Section comprises a team of qualified security consultants and engineers with a wide experience in the establishment of Information Security Management Systems, in the Protection of Data and for drawing up Security Leading Programmes.

Information: Communication and Corporate Image Area.
< Prev   Next >
 
CSR

 

Achivements

 

Multimedia-2

 

blog-FB

 

blog-novasoft-1

 

Novasoft-Foundation-2

 

© Novasoft. All rights reserved.

best-workplaces-2009premio-P-Felipeexcelencia-europeacmmi