Different Organizations in Information Security
There are three widely notable types of Organizations that deal with Information Security. One of these is the independently controlled CISSP, which is considered as one of the benchmark leaders in Information Security. Another is the DITSCAP, which is in itself is a process defined by the United States. In its capacity tt establishes a standard DOD-wide process that has a set of activities, tasks and a good management structure that certifies and accredits an Automated Information System (AIS) that will maintain the Information Assurance (IA). It is also the system put into place that creates and maintains the posture of the Defense Information Infrastructure (DII) throughout the system’s life cycle. In reality, it is assigned in the process of acquiring and containment of all the DOD system that collects, stores, transmits, or processes both the unclassified or classified information. Another is the CISM, which is another type of Certification given to Information Security Managers. The Information Systems Audit and Control Association (ISACA) awards it. A person may gain this Certification by being able to pass written examination. The takers must also have at least five years of Information Security experience and a minimum three years in the field of Information Security. The sole intent of the CISM is to give, achieve and have a Common Body of Knowledge for Information Security Management. It is also noteworthy to add that both CISSP and the CISM try to provide the best Common Body of Knowledge. The CISM in the meanwhile is more focused on the risk management of the information by using it as the basis of Information Security. All in all, the three of them aspire and work towards the same goal and that is the security of the Information they keep within themselves.