Information Security Evaluation

This book proposes a global and systemic multidimensional integrated approach to the holistic evaluation of the information security posture of an organization. The Information Security Assurance Assessment Model (ISAAM) presented in this book is based on, and integrates, a number of information security best practices, standards, methodologies and sources of research expertise. This approach will help improve the identification of security requirements, measures and controls; while providing a means of enhancing the recognition of evidence related to the assurance, quality, and maturity levels of the organization's security posture.