News
ISACA Signs License Agreement With USC Marshall Institute to Develop a Definitive Information Security Model for Businesses
October 2008 by Marc Jacob
To help companies bridge the divide between information security and business objectives, ISACA has entered a license agreement with the University of Southern California’s Marshall School of Business to develop a business model for information security.
The model will be based on the Systemic Security Management framework developed by the Institute for Critical Information Infrastructure Protection (ICIIP), which was formed by the Marshall School of Business.
ISACA, a nonprofit association that serves more than 86,000 IT security, assurance and governance professionals, will transform the theoretical model into a practical tool that can be used by information security practitioners to unify security initiatives with the business mission. Called the Business Model for Information Security Management, the model will apply internationally, across different cultures and regulatory environments, and will be suitable for all types of enterprises, including for-profit and nonprofit organizations and governmental bodies.
ISACA will issue two deliverables based on the model in the next six months:
an executive guide and a practitioner guide to the business model for information security.
