openPR Logo
Press release

atsec experts participate in ISO/IEC JTC 1/SC 27

Austin, TX - atsec information security corporation is proud that two of its consultants contributed as experts of the U.S. National Body delegation in the recent 34th meeting of the ISO/IEC JTC 1/SC 27 "Information technology - Security Techniques" held in MS Lenin between Moscow and St Petersburg.

atsec's Helmut Kurth, Chief Scientific Officer, and Fiona Pattinson, Director of Business Development & Strategy, attended the meeting as experts, and noted that the standardization effort is extremely important to the progress and maturation of the information security discipline. Information Security is a trans-national problem and internationally agreed standards are an important tool in addressing security globally.

The sub committee consists of some 35 participating countries and 13 observer countries. Work progresses in each of the following five working groups:

- JTC 1/SC 27/WG 1: requirements, security services and guidelines
- JTC 1/SC 27/WG 2: security techniques and mechanisms
- JTC 1/SC 27/WG 3: security evaluation criteria
- JTC 1/SC 27/WG 4: security controls and services
- JTC 1/SC 27/WG 5: identity management and privacy technologies

Standards that are produced by SC 27 cover the full range of information security standards from cryptographic algorithms through secure software development, and include standards that are both well used and respected by the community including:

- ISO/IEC TR 15446 Guide for the production of Protection Profiles and Security Targets
- ISO/IEC 15408:2005 Evaluation criteria for IT security
- ISO/IEC 27001:2005 Information security management systems – Requirements
- ISO/IEC FCD 27005 Information security risk management
- ISO/IEC 21827 Systems Security Engineering – Capability Maturity Model® (SSE-CMM®)
- ISO/IEC NP 24760 A Framework for Identity Management

The primary focus of standardization in the field of Information and Communications Technologies in the U.S. is managed by INCITS, (InterNational Committee for Information Technology Standards) who have the responsibility of providing the U.S. Technical Advisory Group on behalf of ANSI (American National Standards Institute) to SC 27. Many of the most prominent companies and organizations involved in information security in the U.S. are members of the INCITS Cybersecurity committee CS1. Information on joining the committee can be found at http://www.incits.org/

About atsec information security
atsec information security is an independent, standards-based IT (information technology) security consulting and evaluation services company that combines a business-oriented approach to information security with in-depth technical knowledge and global experience. atsec was founded in Munich (Germany) in January 2000 and has extensive international operations with offices in the US, Germany, Sweden, the UK, and China. atsec leverages its deep security, process, and standards expertise to consult on a wide range of IT security needs, enabling clients to establish integrated security management procedures in order to manage security risk and improve data, product, and business process reliability. atsec works with leading global companies such as IBM, HP, Oracle, Cray, BMW, SGI, Vodafone, Swisscom, RWE, and Wincor-Nixdorf. For more information, please visit www.atsec.com.

Media Contact:
Andreas Fabis, fabis@atsec.com
Marketing Director
atsec information security
(512) 615-7317

atsec information security corporation
9130 Jollyville Road, Suite 260
Austin, TX 78759
USA
Phone: +1-512-615-7300
Telefax: +1-512-615-7301
eMail: info@atsec.com

This release was published on openPR.

Permanent link to this press release:

Copy
Please set a link in the press area of your homepage to this press release on openPR. openPR disclaims liability for any content contained in this release.

You can edit or delete your press release atsec experts participate in ISO/IEC JTC 1/SC 27 here

News-ID: 20904 • Views: 1509

More Releases from atsec information security corporation

The Vatican signs the ISO/IEC 15408 International Recognition Arrangement (I^2RA …
Recognizing the need for secure IT products in all regions of the world, and in support of an internationally agreed Arrangement allowing for the mutual recognition of independently evaluated and validated information technology (IT) products, the Vatican has decided to sign the ISO/IEC 15408 International Recognition Arrangement (I^2RA) and has started to validate the security evaluations of IT products. The I^2RA was established in 1996 and was used as the basis
atsec offers Recognized Assessor services for the Open Trusted Technology Provid …
atsec is one of the initial Recognized Assessor companies(i) accredited for the Open Trusted Technology Provider™ Standard Accreditation Program which was announced today during The Open Group(ii) conference in San Francisco, CA. This accreditation program provides the opportunity for technology integrators and their suppliers throughout the global supply chain, to demonstrate conformance to the O-TTPS standard. atsec has participated in the industry-led Open Group Trusted Technology Forum since the forum's formation
Call for papers: International Cryptographic Module Conference 2013
This first ICMC aims to bring together experts from around the world to confer on the topic of cryptographic modules, with emphasis on their secure design, implementation, assurance, and use, referencing both new and established standards such as FIPS 140-2 and ISO/IEC 19790. We are focused on attracting participants from the engineering and research community, test laboratories, government organizations, the procurers, deployers and administrators of cryptographic modules and academia. Our program
atsec makes Third Party Auditor agreement with NASPO
Austin, TX – atsec information security is pleased to announce its affirmation as a third party auditor for the North American Security Products Organization (NASPO). In this role, atsec has completed the necessary training from NASPO and will conduct audits required to attain certification under the ANSI/NASPO-SA-2008 standard. NASPO was founded in 2002 by companies and individuals in the security products industry who recognized the need for the control of

All 5 Releases


More Releases for ISO/IEC

Karomi - maker of ManageArtworks, is ISO/IEC 27001:2013 and ISO/IEC 27017:2015 c …
Karomi Inc. has been awarded the ISO/IEC 27001:2013 and ISO/IEC 27017:2015 certifications - globally recognized standards for outlining best practices for information security management systems and security controls specifically related to cloud computing respectively. Conformity with these standards demonstrates our commitment to ensuring scrupulous security controls which helps provide our clients with an additional layer of assurance. This translates to: Implementing a system that helps control - how and where information is stored
ATEQ adds Ninth ISO/IEC 17025 Certified Lab
ATEQ announces the ISO 17025 accreditation of the testing/calibration lab in their Spain office. The accreditation of this office gives ATEQ a total of nine global offices that have an ISO/IEC 17025 certified lab; USA, France, Canada, China, Korea, India, Japan and Italy also have accredited labs. ISO 17025 specifies quality management requirements for the competence and consistent operation of laboratories to produce precise and accurate test and calibration data. The
Etech Receives ISO/IEC 27001:2013 Certification
Nacogdoches, TX – June 09, 2017 –Etech Global Services is very proud to announce that it has recently received the ISO/IEC 27001:2013 certification from the International Organization for Standardization (ISO), an international standard-setting body composed of representatives from various national standards organizations. ISO 27001 is a framework of policies and procedures that includes all legal, physical and technical controls involved in information risk management processes. ISO certification requires companies to:
PECB obtains ANSI/ISO/IEC 17024 accreditation for its ISO 27001 certification sc …
Montreal, QC, CANADA (June 28th, 2012) – Today PECB announces that it has been accredited by the American National Standards Institute (ANSI) to meet the ANSI/ISO/IEC 17024 Personnel Certification Accreditation standard for its ISO 27001 certification scheme (ISO 27001 Lead Auditor, ISO 27001 Lead Implementer and ISO 27001 Master). PECB is the first and the only certification body to be accredited for ISO 27001 related certifications. “ANSI commends PECB for meeting
eRevMax Recertified for ISO/IEC 27001:2005
Hospitality Software Vendor maintains strict compliance to international security best practices Kolkata, 1 September 2010: eRevMax Technologies, pioneer in hotel online distribution, channel and revenue management tools, has been recertified for its information security management standards. Following a stringent audit overseen by DNV, an internationally accredited certification organisation, eRevMax received ISO/IEC 27001:2005 for the next three years. The initial certification was achieved in 2007. The ISO 27001:2005 is awarded to companies that
SpaceNet AG Receives ISO/IEC 27001 Certificate
atsec information security supported the full-service Internet provider in certifying its data center 2008-02-12 – Munich, Germany - Information integrity, confidentiality, and security is the number one priority when dealing with sensitive customer data on a daily basis. SpaceNet AG has proven its commitment to this principle by achieving successful ISO/IEC 27001 certification. SpaceNet AG Director Sebastian von Bomhard explained: “A well-planned approach to business challenges and high IT security standards is