It cannot be denied that nowadays information is a very important asset for any modern organization. Therefore protecting its security is very important and becoming a top priority for many organizations. Unfortunately there is no single formula that can guarantee 100% of information security. Therefore there is a need for a set of benchmarks or standards to ensure the best security practices are adopted and an adequate level of security is attained. In this paper, authors introduce various information security standards briefly and then provide a comparative study for major information security standards, namely ISO27001, BS 7799, PCIDSS, ITIL and COBIT. The study will provide a picture of the position and specialization of each standard, adoption by countries and their
[1]
Sebastiaan H. von Solms,et al.
Information Security governance: COBIT or ISO 17799 or both?
,
2005,
Comput. Secur..
[2]
Heru Susanto,et al.
Information Security Management System: Refinement Integrated Solution's Six Domains
,
2011
.
[3]
Rossouw von Solms,et al.
The 10 deadly sins of information security management
,
2004,
Comput. Secur..
[4]
Sebastiaan H. von Solms,et al.
Information Security Governance - Compliance management vs operational management
,
2005,
Comput. Secur..
[5]
F. Ashcroft,et al.
VIII. References
,
1955
.