ISO 27001 Control A.7

A.7.1 Responsibility for assets Objective: To achieve and maintain appropriate protection of organizational assets. A.7.1.1 Inventory of assets Control All assets shall be clearly identified and an inventory of all important assets drawn up and maintained. A.7.1.2 Ownership of assets Control All information and assets associated with information processing facilities shall be ‘owned’ by a designated part of the organization. A.7.1.3 Acceptable use of assets Control Rules for the acceptable…

ISO 27001 Control A.6

A.6 Organization of information security A.6.1 Internal organization Objective: To manage information security within the organization. A.6.1.1 Management commitment to information security Control Management shall actively support security within the organization through clear direction, demonstrated commitment, explicit assignment, and acknowledgment of information security responsibilities. A.6.1.2 Information security coordination Control Information security activities shall be co-ordinated by representatives from different parts of the organization with relevant roles and job functions. A.6.1.3…

ISO 27001 Control A.5

A.5 Security Policies A.5.1 Information Security Policy To provide management direction and support for information security in accordance with business requirements and relevant laws and regulations. A.5.1.1 Information Security Policy Document A set of policies must be defined, approved by management, published and communicated to employees and relevant external parties. The policies must be led by business needs, alongside the applicable regulations and legislation affecting the organisation too. These policies need…

SunGard launches APT Enterprise platform for integrated view of risk management

SunGard has launched its APT Enterprise platform, which provides integrated risk management through an interactive risk dashboard for buy-side firms. The new platform will provide asset managers with a competitive advantage derived from an intuitive and coherent analysis of both market and liquidity risks. This is achieved by improved modelling of multi asset class portfolios, and by streamlining the workflow for market data management. With this capability, asset managers will…

Gartner Positions MetricStream in the Leader’s Quadrant of the Magic Quadrant for Business Continuity Management Planning Software

MetricStream, the leading provider of Governance, Risk and Compliance (GRC) solutions today announced that it has been positioned by Gartner, Inc. in the “Leaders” Quadrant of the 2014 Magic Quadrant for Business Continuity Management Planning (BCMP) Software1. Vasant Balasubramanian, Vice President of Product Management at MetricStream said, “MetricStream is constantly pushing the boundaries of technology to develop a truly intelligent, integrated and innovative cloud-based solution for BCMP. We believe our…