Definition of Procedures and Controls is a fundamental factor when establishing an IT Management Model or an Information Security Management System (ISMS). Different methodologies or standards are used in accordance with the requirements or needs of the client; among the most extensive are CObIT, ITIL, and ISO-17799. Proper structuring of documents using Policies, Procedures and Guidelines, as well as instructions, make an organization’s Information Systems easier to manage by adapting ITCs and Security to the objectives of the Organization.
|
