What is the ISO 38500 standard?

What is the ISO 38500 standard?

ISO IEC 38500:2008, or ISO 38500 is the international standard for the corporate governance of information technology. ISO 38500 provides guidance to those advising, informing or assisting directors on the effective and acceptable use of Information Technology (IT) within the organisation. The important advantage of the ISO 38500 IT governance framework is to make sure that accountability is […]

What is HIPAA Compliance?

What is HIPAA Compliance?

HIPAA, the US Health Insurance Portability and Accountability Act 1996, establishes the standard for protecting sensitive patient data. Any organisation that deals with protected health information (PHI) must ensure that all the required physical, network, and process security measures are in place and followed. This includes covered entities, anyone who provides treatment, payment and operations […]

What is the ISO 27001 Standard?

What is the ISO 27001 Standard?

The ISO 27001 Standard (ISO/IEC 27001:2005) is the international standard describing best practice for an Information Security Management System. The ISO 27001 Information Security Management standard can be applied to all types of organisations and specifies the requirements for establishing, implementing, operating, monitoring, reviewing, maintaining and improving a documented Information Security Management System (ISMS) within […]

PRINCE2 – Projects in Controlled Environments – A standard for IT projects

PRINCE2 – Projects in Controlled Environments – A standard for IT projects

PRINCE2 is a de facto standard developed and used extensively by the UK government and is widely recognised and used in the private sector, both in the UK and internationally. It embodies established and proven best practice in project management.  PRINCE2 (Projects in a Controlled Environment) is a structured project management method based on experience drawn from thousands […]

ISO 9001 Quality Management Systems Requirements Standard

ISO 9001 Quality Management Systems Requirements Standard

ISO 9001: 2008 is a standard which specifies the requirements for a quality management system (QMS) where an organisation (1) needs to demonstrate its ability to consistently provide product that meets customer and applicable regulatory requirements, and (2) aims to enhance customer satisfaction through the effective application of the system. This includes processes for continual […]

ITIL Service Management Standard

ITIL Service Management Standard

ITIL® is the most widely adopted approach for IT Service Management in the world.  It provides a practical, no-nonsense framework for identifying, planning, delivering and supporting IT services to the business. ITIL advocates that IT services must be aligned to the needs of the business and underpin the core business processes. It provides guidance to organizations on how to use IT as […]

ISO/IEC 20000 Part 1 – Service Management System Requirements Standard

ISO/IEC 20000 Part 1 – Service Management System Requirements Standard

The ISO/IEC 20000-1:2011 standard specifies the requirements for a service management system (SMS). It details requirements for the service provider to: plan; establish; implement; operate; monitor; review and maintain and improve an SMS Who is ISO 20000 for? The requirements within the standard include the design, transition, delivery and improvement of services to meet agreed service requirements. […]