Posted: Tue Feb 03, 2009 9:16 am Post subject: about itil + information security
hi i am doing masters in information security system management.
i am totally new with itils
if any budy suggest me a reserch topic on itil because i have to do this reserch in 3 month and second think it should be related with security issues also(if possible).i also wants some case study so i justify my proffesor that there is a problems and i gone a go for solution.
anybodies suggestion appriciate.
Joined: Mar 04, 2008 Posts: 1894 Location: Helensburgh
Posted: Tue Feb 03, 2009 9:37 am Post subject:
unless you already have experience and knowledge of IT Service Management, I'm not sure that you could do anything useful on ITIL in three months.
Even then, I would not suggest topics without understanding your present grasp of the subject.
ITIL is a pragmatic subject, and, while it is undoubtedly possible to do useful academic analysis, it requires in-depth understanding just to get to the starting line. _________________ "Method goes far to prevent trouble in business: for it makes the task easy, hinders confusion, saves abundance of time, and instructs those that have business depending, both what to do and what to hope."
William Penn 1644-1718
Posted: Thu Feb 05, 2009 6:43 am Post subject: thanks to reply
ya you are right, can you suggest that i can search anything like itil+ information security or small or big business itil customer compliance about security prospect actually i need something is related with security in itil my other clasmate working on pgp,phisihing,cobit compliance,sql injection,patch behaviour so i am also looking something like customer or itil related person have problem with security i need some case study or compliance if you give me idea so i can search and work on it.
Sounds like the best thing to focus is on integrating ISO27001 into/along side ITIL processes.
Something like that might be doable, just remember to keep in mind that in the real world there are different factors impacting different size companies in different market sectors. So you can make a point of highlighting the InfoSec needs of financial services against lower threshold organisations. If you want to be really smart look at not-for-profit organisations, e.g. charities and how well they cope with InfoSec requirements (or not!).
UJ _________________ Did I just say that out loud?
One option you might consider is how Information Security is becoming an increasingly important part of Supplier Management, i.e. ensuring that your own Information Security measures are not undermined by whatever you are relying on your suppliers for.
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum