Tuesday, June 3, 2008

Verizon Business Enhances Security Management Program

Verizon Business announced significant enhancements to its Security Management Program (SMP), including the incorporation of the ISO 27002 Code of Practice for Information Security Management as the basis for evaluating customer security programs and the launch of a new at-a-glance Web-based dashboard that enables organizations to immediately assess the status of their compliance efforts across an expanded set of standards.


The internationally recognized and publicly vetted ISO 27002 information security standard includes 133 security controls used to safeguard the integrity, confidentiality and availability of critical company data. The program had previously evaluated customer security controls primarily against best practices determined by Verizon Business.


The newly enhanced dashboard uses a comprehensive scorecard to provide a holistic view of how a customer's security controls align with the requirements of multiple regulations such as the Gramm-Leach-Bliley Act (GLBA) and Health Insurance Portability and Accountability Act (HIPAA), as well as security standards specific to a customer's industry.


Verizon Business is also expanding its support for additional industry standards and regulations, including the Payment Card Industry Data Security Standard (PCI DSS) 1.1, COBIT 4.1, BITS AUP 3.0, North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) and Federal Financial Institutions Examination Council (FFIEC).http://www.verizon.com