SPECIALISTS IN INFORMATION SECURITY MANAGEMENT SYSTEMS (ISO/IEC 27001)  

 

Research

Gamma has conducted research into information security and internal control over many years. Listed below is a selection of our most important papers.

 
  • Exploiting an Integrated Management System [2005] — This paper presents an architecture for an integrated management system. It was published seven years before the new ISO directives (April 2012) concerning the High Level Structure and Identical Core Text for all management system standards, and it is still ahead of the curve.
 
  • Opportunity Exploitation Plans [2005] — These are the mirror image of risk treatment plans. Established standards, such as ISO/IEC 27001, manage risks, but what about exploiting opportunities? This paper explains how.
 
 
  • The Chinese Wall Security Policy [1989] — our seminal paper contrasting the Orange Book to the 1986 Financial Services Act.  First published at the IEEE Symposium on Security and Privacy, Oakland 1989.

 

Not what you were looking for?

Click on the following for some specific themes: