UK information security organisations have joined forces
to launch the Information Security Awareness Forum.
According to the Forum, one of the biggest problems facing
organisations and individuals is a lack of
information security awareness, with people either not knowing
about, ignoring or circumventing security processes and technical
countermeasures.
Lack of awareness, they say, has been the main cause of some of
the most serious security incidents in the UK in the last 12
months, including
HMRC sending inadequately protected discs containing millions
of people's sensitive data in the post, and the MoD leaving a
laptop in a car with hundreds of thousands of confidential data
records on it.
The Information Security Awareness Forum has been established as
a cross industry initiative, dedicated to improving information
security awareness by pooling the expertise and resources of the
following organisations:
- (ISC)2
- British Computer Society (BCS)
- Communications Management Association (CMA)
- European Information Society Group (EURIM)
- GetSafeOnline
- The Institution of Engineering and Technology (IET)
- Infosecurity Europe
- Information Assurance Advisory Council (IAAC)
- Institute for the Management of Information Systems (IMIS)
- Institute of Information Security Professionals (IISP)
- IUA Digital Risk Working Party
- Jericho Forum
- Security Awareness Special Interest Group (SASIG)
- Worshipful Company of Information Technologists (WCIT)
- Information Security Forum (ISF)
- Information Systems Audit and Control Association (ISACA)
- ASIS International (ASIS)
- Information Systems Security Association (ISSA)