Infosecurity to host mock security breach trial  
  SEARCH: Sign In | Register | Contact Us | Site Map | Home  

Resources for Federal Financial Institutions Examination Council (FFIEC)

Infosecurity to host mock security breach trial

www.computerweekly.com

Infosecurity will this week host a mock courtroom trial to demonstrate that the boardroom has ultimate responsibility for information security breaches.

The trial will be based on a fictionalised account of the real theft of thousands of credit card account details. In the dock will be the chief executive, the chief information officer, the chief information security officer and other suspects.

Paul Williams, former president of the Information Systems Audit and Control Association, will defend the CIO's role. "Ultimate responsibility for information security rests with the board and the chief executive, " he said. "This cannot be delegated. It is up to them to set the policies and to monitor their implementation."
ADVERTISEMENT

Williams said security was more than the "box-ticking" exercises demanded by regulations such as Sarbanes-Oxley and PCI DSS. "I am not convinced more regulation helps," he said. "Jail means that all else has failed."

View the Resource



Share or bookmarklet this web page at:



Google
Privacy Policy | Terms & Conditions | Support | Directory Links | Contact Us | Site Map | Home
Copyright © 2007-2008 ComplianceHome.com. A SUPREMUS GROUP venture. All rights reserved.