The alliance of Information Systems Security Association (ISSA), ASIS International (ASIS) and the Information Systems Audit and Control Association (ISACA) brings together more than 80,000 global security professionals with a broad base of security backgrounds and skills to address these issues.
The need for this global alliance is predicated on the significant increase and complexity of security-related risks to international commerce from terrorism, cyber attacks, Internet viruses, theft, fraud, extortion and other threats that require corporations to develop a more comprehensive approach to protect the enterprise.
A critical step in the development of this integrated approach is to ensure all functions within the enterprise work together to identify and mitigate risks, and to effectively manage security-related incidents when they occur in order to reduce their impact on people, profitability and property.
The objectives of the alliance are:
• Developing risk models that more fully qualify and quantify enterprise-wide security risks and potential impacts to the business.
• Raising awareness to executive management regarding the nature of existing and emerging security threats, and best practices to mitigate those threats through the convergence of security organizations, processes and approaches.
• Promoting a common security management voice to legislators and government agencies and providing them with information regarding best security practices.
• Continuing to define the qualification, certification and training requirements for the Chief Security Officer (CSO)/Chief Information Security Officer (CISO) role and other security-related positions.
The alliance will also advance its objectives through research, executive seminars and other educational offerings to benefit security and other business executives.
Today's CSO/CISO and other security professionals need to be expert in many areas of security and control, particularly in the wake of Sarbanes-Oxley and other regulatory requirements. Together, ISSA, ASIS International, and ISACA offer the expertise, training and resources required to address the current and emerging security threats to the enterprise.
With active participation from individuals and chapters all over the world, the ISSA (http://www.issa.org and http://ciso.issa.org) is the largest international, not-for-profit association for security professionals. It provides educational forums, CISO executive forums, information resources and peer interaction opportunities that enhance the knowledge, skill and professional growth of its members.
The ISSA has more than 13,000 members in nearly 100 chapters around the world. ISSA members are consistently recognized as experts on critical issues in all areas of information security, and the group is seen as an important resource for small businesses, global enterprises and government organizations, focused on providing a single source of leadership and maintaining its position as The Global Voice of Information Security.
ASIS International (http://www.asisonline.org) is the preeminent organization for security professionals, with more than 33,000 members worldwide. Founded in 1955, ASIS is dedicated to increasing the effectiveness and productivity of security professionals by developing educational programs and materials that address broad security interests, such as the ASIS Annual Seminar and Exhibits, as well as specific security topics. ASIS also advocates the role and value of the security management profession to business, the media, government entities, and the public. By providing members and the security community with access to a full range of programs and services, and by publishing the industry's number one magazine — Security Management — ASIS leads the way for advanced and improved security performance.
With more than 35,000 members in more than 100 countries, ISACA (http://www.isaca.org) is the global leader in information governance, security and assurance. Founded in 1969, ISACA sponsors international conferences, publishes the Information Systems Control Journal™, develops international information systems auditing and control standards, and administers the globally respected Certified Information Systems Auditor™ (CISA®) designation, earned by more than 38,000 professionals since inception, and the Certified Information Security Manager® (CISM®) designation, a groundbreaking credential earned by 5,100 professionals in its first two years.
