Ixilix - Compliance-Based On Demand Hosting & Managed Services

ISO 17799 Overview

ISO 17799 is the code of good practice for information security management from the International Standards Organization. ISO 17799 is the overall security framework that many companies use to implement the specific security safeguards required by common regulatory standards such as SAS 70 Type II, PCI DSS, HIPAA and others.

ISO 17799 addresses a comprehensive catalogue of topics that should be considered in designing, implementing, and operating a secure IT infrastructure. The major topics are:

1. Security Policy

2. Organization of Information Security

3. Asset Management

4. Human Resource Security

5. Physical and Environmental Security

6. Communications and Operations Management

7. Access Control

8. Information Systems Acquisition, Development, and Maintenance

9. Information Security Incident Management

10. Business Continuity Management

11. Compliance

To learn more about ISO 17799, please click here.

To download an overview of other common regulatory standards that affect IT infrastructure and systems, please click here.

Ixilix has been certified under ISO 17799:2005 by an outside auditor, as well as for SAS 70, PCI, HIPAA, and FISMA.