Persónuvernd og öryggi persónuupplýsinga

Hjá ESB hefur verið samþykkt ný löggjöf um persónuvernd. Það er annars vegar um að ræða almenna reglugerð sem nálgast má hér http://ec.europa.eu/justice/data-protection/reform/files/regulation_oj_en.pdf

og hins vegar tilskipun um meðferð persónuupplýsinga hjá löggæslunni, sem nálgast má hér.

http://eur-lex.europa.eu/legal-content/EN/TXT/?uri=uriserv:OJ.L_.2016.119.01.0089.01.ENG&toc=OJ:L:2016:119:TOC

Þess má  vænta að hin nýja löggjöf muni mikil áhrif á kröfur til upplýsingaöryggis hér á landi. Stiki mun fylgist vel með þróun þeirra mála og birta hér fréttir og annað efni sem tengist þessu efni, einkum kröfum til öryggis við vinnslu persónuupplýsinga.

Breytingar á mælingum fyrir virkni upplýsingaöryggis

Það er varla hægt að fara nógu varlega þegar það kemur að upplýsingaöryggi. Það að vernda persónugreinarlegar upplýsingar og viðkvæmar viðskiptaupplýsingar er mjög mikilvægt. Hvernig er hægt að vera viss um að ISO/IEC 27001  upplýsingaöryggisstaðalinn sé að virka eins og til er ætlast hjá þínu fyrirtæki.  Nýr staðall um virknimælingar gæti verið svarið.

Hinn nýlega uppfærði staðall  ISO/IEC 27004:2016, Information technology – Security techniques – Information security management – Monitoring, measurement, analysis and evaluation, inniheldur leiðbeiningar um hvernig hægt er að mæla virkni ISO/IEC 27001. Hann útskýrir hvernig eigi að þróa og reka mælingakerfi upplýsingaöryggis og hvernig sé best að nálgast og gefa upplýsingar um mælingar á þessu sviði.

Groundbreaking Software Development Announcement

Stiki™ and Zurich University of Applied Sciences announce a groundbreaking software development project.

Svana Helen Björnsdóttir, CEO Stiki and Martin Rejzek, Senior Research Associate at Zurich University of Applied Sciences

The joint development project is to create a professional, state-of-the-art software solution for STPA (Systems-Theoretic Process Analysis), a hazard analysis methodology for socio-technologic systems based on systems thinking and modeling of accident causation based on systems theory rather than reliability. The principal objective is to provide the STPA methodology for use in a structured application module combined with the existing RM Studio® software to formulate a truly unique enhanced enterprise risk management framework.

The development is initiated from research projects conducted by both parties, including the beta software project SAHRA from the Safety-Critical Systems Research Lab at ZUAS. Stiki‘s dynamic, globally distributed risk management software, RM Studio® is adopting the new STPA software solution as a new module  called Enhanced Enterprise Risk Management Framework (EERMF). Partial funding is provided through the Technology Development Fund, Rannis, of Iceland and the State Secretariat for Education, Research and Innovation, SERI, of Switzerland as part of the European Union Eurostars programme.  

Last week marked the kick-off for the project held at Stiki’s headquarters in Reykjavík, Iceland.

Click RM Studio® to find out more and stay up to date on the project.

RM Studio 5.0 Mustang Available Now

Today RM Studio team has released the newest version of our efficient and effective risk management software, v5.0 Mustang.RM Studio 5.0 Mustang Yes, we chose the name because of the obvious connection to the popular muscle car brand, but also because the name is synonymous with words like fast, powerful, and respected. After all Ford did celebrate the 50th anniversary of the Mustang last year, which represents a long standing respect and customer loyalty for a single brand. In today's fast-paced evolving world, brand loyalty is often hard to gain and even harder to maintain over long periods of time.

Read More