- Information Security Awareness Forum
The Information Security Awareness Forum was founded by the UK chapter of the
Information Systems Security Association in 2008. Its objective is to create a co-ordinated cross-industry / cross-institution approach for deliveringsecurity awareness messages to large corporations,small and medium enterprises , and individuals. Membership of the forum comprises industry bodies and professional organisations that have a specific interest in promotingsecurity awareness .The forum is not seeking to “reinvent the wheel”. There already exists a lot of awareness materials for individuals as well as organisations. However there has been a lack of co-ordination, resulting in overlaps and gaps too. The forum brings together interested parties to work together to remove some of the overlaps, and to partner with organisations to fill some of the gaps.
The group has no plans to develop awareness materials where they already exist, so with their permission, will use materials from organisations such as
Get Safe Online [http://www.getsafeonline.org] which already engages in awareness campaigns as well as being a suitable repository for the target audiences to reference.ponsorship
The forum receives no direct funding, and its participants work on a voluntary basis. Sponsorship of the forum is currently restricted to sponsorship of particular projects that the forum initiates.
Deliverables
One of the first deliverables of the forum is a Guide for Directors which is now available from the awareness forum's
website [http://www.theisaf.org] . This is a set of short guides covering different aspects of information security which directors of organisations need to be aware of. The guide is being developed in conjunction withBT and theInformation Assurance Advisory Council [http://www.iaac.org.uk] , and is an example of how the forum engages with industry players through our support of projects focused around specific deliverables and outcomes.Background
The forum was initiated by the UK chapter of the
Information Systems Security Association [http://www.issa-uk.org] , which continues to be a primary supporter of the forum.Members
Membership of the forum is restricted to professional bodies with a specific interest in information security awareness:
*
SCIPP International - www.SCIPPinternational.org
*(ISC)2
*ASIS International
*British Computer Society
*Communications Management Association
*Cybersecurity Knowledge Transfer Network
*European Information Society Group
*Get Safe Online
*Information Assurance Advisory Council
*Information Security Forum
*Information Systems Audit and Control Association
*Information Systems Security Association
*Infosecurity Europe
*Institute for the Management of Information Systems
*Institute of Information Security Professionals
*IUA Digital Risk Working Party
*Jericho Forum
*National Computing Centre
*National e-Crime Prevention Centre
*Security Awareness Special Interest Group
*The Institution of Engineering and Technology
*Worshipful Company of Information Technologists References
[http://www.bcs.org/server.php?show=ConWebDoc.17715 BCS hosts launch of new security awareness forum]
[http://www2.theiet.org/oncomms/sector/communications/SectionNews/Object/1867E663-A580-1561-04F70B8639F69CB7 New IT security forum aims to beat awareness deficit]
[http://www.itweek.co.uk/itweek/news/2209469/security-awareness-raising Security awareness-raising forum is launched]
[http://news.bbc.co.uk/1/hi/technology/7239395.stm Internet day highlights web risks]
External links
* [http://www.theisaf.org Information Security Awareness Forum]
Wikimedia Foundation. 2010.