STREAM users will as a result, be able to view, control and manage their information security compliance in real time against ISF’s Standard and other information security standards such as ISO 27002 and Cobit.
Howard A. Schmidt, president and chief executive of ISF, said: “We believe that integrating ISF IP into industry leading products such as Acuity’s STREAM will provide a range of important benefits to both ISF members and non-members and increase adoption of the ISF Standard of Good Practice.”
Acuity’s managing director Simon Marvell, added: “For the first time, CISOs will have access to the ISF’s information security standard delivered through a tool they can use every day and in real-time to see their enterprise’s risk and compliance position.”
ISF’s Standard of Good Practice for Information Security is based on a work programme and analysis and integration of other information security related standards such as ISO 27002 and COBIT v4.1. It also embraces legal and regulatory requirements including the Sarbanes-Oxley Act 2002, Payment Card Industry Data Security Standard (PCI DSS), Basel II 1998, and the EU Directive on Data Protection.