Welcome to the second edition of our information risk management newsletter in 2007! - Dirk Bosmans (CEO Ascure)

Dear,

As already indicated in our first issue, Information Risk Management is becoming increasingly important to an ever growing number of companies. The reason is simple: “Information Risk Management forms an integral part of Operational Risk Management and this is the responsibility of senior management”. They must be able to provide the necessary assurance to the key stakeholders of the company: shareholders, employees, the general public and in a lot of cases governmental institutions.

It is therefore that a holistic approach to Information Risk Management is necessary. Measures need to be taken on both strategic, architectural and operational level and need to be based on and conform to the company’s overall operational risk management policy and business strategy. Education and awareness are unfortunately often two crucial aspects that are forgotten in this respect. Yet, if people do not understand or are not fully aware of the implemented controls, processes and procedures, a lot of hard work can proof to be useless in practice.

At Ascure we have the necessary skills and experience in all domains and we can support you with multi-disciplinary teams that fully understand the interaction and interdependencies between these different domains of Information Risk Management.

In this issue you will find an overview of our Ascure Academy education activities and interesting articles on Crisis Management (as part of Business Continuity Management), Information and Data protection and the Microsoft Intelligent Application Gateway 2007.

I am convinced you will find the information interesting and useful. If you would like to discuss our services towards your organization and business, please do not hesitate to contact us.

Happy reading,

Dirk Bosmans

CEO Ascure

Ascure Academy

Upcoming open classes

- Information Security Governance, 23/4 - 24/4 Ghent, BE - register
- Web Application & Services Security, 7/5 – 8/5, Ghent, BE - register
- Business Continuity Management, 14/5 – 15/5, Ghent, BE - register
- IT Security Fundamentals, 29/5 – 31/5 Ghent, BE register
- Hacking InsideOut, 11/6 – 13/6 Ghent, BE - register
- Information Risk Management, 18/6 – 19/6 Ghent, BE - register
- Information Security Governance, 25/6 – 26/6 Ghent, BE - register

View our schedule: click here and registration: click here.

Upcoming partner trainings

- Business Continuity Management, 4/6 – 6/6 Brussels - BE ISTYA - register
- IT Security Essentials, 6/6 – 8/6 Brussels, BE - Business Training - register

Upcoming Events

- Information Security, Laws and Regulations, 26/4 Sofitel - Brussels, BE I.T. Works -  register
- European Identity Conference, 7/5 – 10/5 - Munich, GER -  register
- Business Continuity Seminar, 12/6 – 13/6 Novotel - Amsterdam, NL Array Seminars -  register

Ascure Stories: Crisis Management and Crisis Communication in Business Continuity

17th of April 2007, Ghent (Belgium) - “Can my organization already prepare itself for emergencies or disasters, even if we don’t have a BCP yet?” This is a question that we as Business Continuity Management consultants are very often asked for. Companies can already start taking actions for little cost and small amount of time, whether you have a BCP or not. One of these actions is the appointment of a Crisis Management (CMT) and Crisis Communication Team (CCT). By creating these teams you will also get the immediate attention of the senior management which can, in time, result in a sponsorship for the creation of a BCP.

read more

Ascure Stories: Information and Data Protection

Information and Data confidentiality and integrity in Support of Business, Compliance & Security

17th of April 2007, Ghent (Belgium) - Today, information and data protection is becoming more and more important for companies. Companies need to keep their internal information confidential for external AND internal parties avoiding internal information to become accessible by unauthorized individuals. Business-wise, the lack of having solid information and data protection solutions could lead to leaking of internal information which can cause a company financial damage, loss of image or even loss of business. Being able to protect internal information from the outside world and internal abuse has become an important issue since information and knowledge is an important asset for most companies.

read more

Ascure Stories – Microsoft Intelligent Application Gateway

Information and Data confidentiality and integrity in Support of Business, Compliance & Security

17th of April 2007, Ghent (Belgium) - In February, Microsoft finished the acquirement of Whale by releasing IAG (Intelligent Application Gateway) 2007. According to Microsoft is IAG 2007 "the comprehensive, secure remote access gateway that provides SSL (Secure Socket Layer) based application access and protection with endpoint security management". Ascure promotes IAG 2007 for several reasons.

read more