Security best practices frameworks, such as ISO 17799 and BS7799 give us great recommendations to elaborate information Security projects.
Based on those recommendations, it will be easy for a project manager apply the knowledge about project management while developing an information security project, because the standards and procedures in these frameworks describe the steps and main parameters that a project manager need to take care when creating a information security project.
About those recommendations, we can highlight the following:
• Information security: Confidentiality, integrity and availability
• Risk analysis: impact analysis, threats and vulnerabilities
• Risk management: risk identification and control
• Information security policies: a framework for the whole company
• Physical security: non-authorized access, interferences, and violations
• Operations management: procedures and responsibilities to ensure information resources are being handled correctly
• Access control: controlling information access
• Software development: ensure that all the systems are compliant with the security policy
• Compliance: ensure that the company in following all laws, recommendations or contracts.
It’s obvious that a good security project needs a good project management tool.
After a little research I found a great solution:
ProWorkflow. This web based tool allows you to manage projects, automate processes, and access your organization's information on-line, any time.
Ok, you are not so sure this is the best software or you? You can setup
Free Trial Accounts and test ProWorkFlow for 14 days. This time can be extended to 30 days if needed to evaluate the solution.
Take a look in their
Company Website for more great solutions.
