| | On the safe side |  | IT Security
| | We are on our way to become an information society. Knowledge management and know-how will be important factors for organizations. The new source of power is not money in the hands of the few but information in the hands of many”
(John Naisbitt, *1930, American futurist) |
| Organizations are increasingly aware that information is not only reliable but also well protected. Malpractice, manipulation or even the loss of customer or finance data, strategy or structural plans represent risks of major proportions for all organizations. Either KonTraG or Corporate Governance, Basel II or Sarbanes Oxley Act, all these specifications have in common that they require new mechanisms for the protection of important data as an integral part of an organizations risk management.
With an Information Security Management System (ISMS) according to ISO/IEC 27001 (whose structur and content is compatible to ISO 9001) organizations are able to identify and manage information security risks. It only took three years to increase the number of BS 7799-2:2002 / ISO/IEC 27001 certified systems by a factor of 10 – in Germany DQS is the leading cerification body for those standards with a 40% market share |
 |  |
| Guaranteed security: ensuring transparency and reliability © 2001 CISQ |
| |
|
| The DQS portfolio also includes assessments based on ISO/IEC 20000, a standard for IT Service Management that includes the “Best-Practice” approach according to ITIL® which is increasingly required in the IT-Service-Management sector. A DQS certificate offers trust in the security of all service support and service delivery processes for internal and external customers. |
| |
| |
