The information provided on these pages fall into two broad categories:

Academic writings probe into corporate governance and how information security is handled at this level. Governance became a buzzword nowadays, and is used indiscriminately for many things. A doctoral research is conducted in this field by Endre, and some excerpts are available from his literature review. Since the thesis is not published yet, any copying or referencing this material is strictly prohibited.

Professional discussions are focussed on information security policy and standard frameworks. A policy/standard hierarchy is suggested, and a framework based on the ISO/IEC 17799:2005 and ISO/IEC 27001:2005 standards following this hierarchy is described. Fully developed policy and standard documents are available for sale and a full service offering is also available. Please feel free to contact us.

<back to top>