<!DOCTYPE html>
<html>
<head>
<title>Information Security Management Standard Requirements</title>
</head>
<body>
<style type="text/css">#aweber_rem {
text-align:center;
font-size:10px;
color:#333;
width:600px !important;
margin:0px auto;
font-family:Verdana, Arial, Helvetica, san-serif;
}
#aweber_rem a {
text-decoration:none;
}
#aweber_rem a:hover {
text-decoration:underline;
}
</style>
<center>
<table cellpadding="0" cellspacing="0" style="font-family:helvetica,verdana,arial,sans-serif; text-align:left; width:600px">
<tbody>
<tr>
<td style="color:#666666; padding-bottom:5px" valign="bottom" width="400">
<div style="font-size:12px; text-align:right"><span style="font-family:verdana"><a href="http://zaale.com/l/J9dyb892892r4VxIWGcw892l7Etw/S4rG763wOoqsjzNEEmF7a75w/n76335WxF7X0ZOp8jzOaVJvA"><img align="left" alt="" height="80" src="https://cdn6.bigcommerce.com/s-ilcoov/product_images/the_art_of_service_-_we_get_it_transparent_1_1503604503__72937.png" width="200" /></a></span><br />
<span style="font-family:verdana"><a href="http://zaale.com/l/J9dyb892892r4VxIWGcw892l7Etw/S4rG763wOoqsjzNEEmF7a75w/n76335WxF7X0ZOp8jzOaVJvA" target="_blank" title="Trouble viewing this email? ">Trouble viewing this email?</a></span></div>
<div style="font-size:14px; text-align:right">
<div style="font-size:12px; text-align:right"> </div>
<div style="font-size:12px; text-align:center">
<hr />
<p><span style="color:#000000"><span style="font-size:24px"><strong>Information Security Management Standard Requirements Toolkit</strong></span></span><br />
</p>
<span style="color:#000000"><span style="font-family:verdana"><span style="font-size:36px"><span style="font-family:verdana"><strong><a href="http://zaale.com/l/J9dyb892892r4VxIWGcw892l7Etw/S4rG763wOoqsjzNEEmF7a75w/n76335WxF7X0ZOp8jzOaVJvA"><img alt="" height="50" src="https://artofservice.s3.amazonaws.com/Get_started_button._CB531883441_.png" width="400" /></a></strong></span></span></span></span><br />
</div>
<p style="text-align:center"><span style="color:#000000"><span style="font-size:20px">Crucial Requirements:</span></span></p>
<ul>
<li style="text-align: left;"><span style="color:#000000"><span style="font-size:15px">Have you developed a continuous monitoring strategy for the information systems (including monitoring of security control effectiveness for system-specific, hybrid, and common controls) that reflects the organizational Risk Management strategy and organizational commitment to protecting critical missions and business functions?</span></span><br />
</li>
<li style="text-align: left;"><span style="color:#000000"><span style="font-size:15px">Has the organization demonstrated the use of sound information system and security engineering methodologies in integrating information technology products into the information system and in implementing the security controls contained in the security plan?</span></span><br />
</li>
<li style="text-align: left;"><span style="color:#000000"><span style="font-size:15px">Does the organization have an effective process in place to report the security status of the information system and its environment of operation to the authorizing officials and other designated senior leaders within the organization on an ongoing basis?</span></span><br />
</li>
<li style="text-align: left;"><span style="color:#000000"><span style="font-size:15px">Are authorizing officials conducting ongoing security authorizations by employing effective continuous monitoring activities and communicating updated risk determination and acceptance decisions to information system owners and common control providers?</span></span><br />
</li>
<li style="text-align: left;"><span style="color:#000000"><span style="font-size:15px">Does the organization take the necessary remediation actions to address the most important weaknesses and deficiencies in the information system and its environment of operation based on the findings and recommendations in security assessment reports?</span></span><br />
</li>
<li style="text-align: left;"><span style="color:#000000"><span style="font-size:15px">Has the organization tailored and supplemented the baseline security controls to ensure that the controls, if implemented, adequately mitigate risks to organizational operations and assets, individuals, other organizations?</span></span><br />
</li>
<li style="text-align: left;"><span style="color:#000000"><span style="font-size:15px">Has the organization supplemented the common controls with system-specific or hybrid controls when the security control baselines of the common controls are less than those of the information system inheriting the controls?</span></span><br />
</li>
<li style="text-align: left;"><span style="color:#000000"><span style="font-size:15px">Is the organization effectively monitoring changes to the information system and its environment of operation including the effectiveness of deployed security controls in accordance with the continuous monitoring strategy?</span></span><br />
</li>
<li style="text-align: left;"><span style="color:#000000"><span style="font-size:15px">Did the organization update appropriate security plans based on the findings and recommendations in the security assessment report and any subsequent changes to the information system and its environment of operation?</span></span><br />
</li>
<li style="text-align: left;"><span style="color:#000000"><span style="font-size:15px">Has the organization established a program to oversee systems operated on its behalf by contractors or other entities, including for organization systems and services residing in a cloud external to the organization?</span></span><br />
<div style="text-align:left"> </div>
</li>
</ul>
</div>
<div style="text-align:center">
<p style="text-align:left"><span style="color:#000000"><span style="font-family:verdana"><a href="http://zaale.com/l/J9dyb892892r4VxIWGcw892l7Etw/S4rG763wOoqsjzNEEmF7a75w/n76335WxF7X0ZOp8jzOaVJvA"><img align="right" alt="" height="900" src="https://cdn6.bigcommerce.com/s-ilcoov/products/149785/images/183207/Information_Security_Management_TKFC__61388.1535492720.1280.1280.jpg?c=2" style="margin:5px" width="600" /></a> </span></span></p>
<p><span style="color:#000000"><span style="font-family:verdana"><span style="font-size:36px"><span style="font-family:verdana"><strong><a href="http://zaale.com/l/J9dyb892892r4VxIWGcw892l7Etw/S4rG763wOoqsjzNEEmF7a75w/n76335WxF7X0ZOp8jzOaVJvA"><img alt="" height="50" src="https://artofservice.s3.amazonaws.com/Get_started_button._CB531883441_.png" width="400" /></a></strong></span></span> </span></span></p>
</div>
<hr />
<p style="text-align:center"><span style="color:#000000"><span style="font-family:verdana"><a href="http://zaale.com/l/J9dyb892892r4VxIWGcw892l7Etw/S4rG763wOoqsjzNEEmF7a75w/n76335WxF7X0ZOp8jzOaVJvA" style="font-size: 16px; font-family: verdana;"><img alt="" height="80" src="https://cdn6.bigcommerce.com/s-ilcoov/product_images/the_art_of_service_-_we_get_it_transparent_1_1503604503__72937.png" width="200" /></a></span></span></p>
<div style="text-align:center">
<div><span style="color:#000000"><span style="font-family:verdana"><span style="font-family:verdana"><span style="color:#000000"><span style="font-size:16px"><strong>To make sure you keep getting these emails, please add service@theartofservice.com to your address book or whitelist us.</strong> </span></span></span><br />
</span></span></div>
<div style="text-align:center"><br />
<span style="color:#000000"><span style="font-family:verdana"><span style="font-family:verdana"><a href="http://zaale.com/l/J9dyb892892r4VxIWGcw892l7Etw/tLPMObndyKe4o0O892wY763i763A/n76335WxF7X0ZOp8jzOaVJvA"><img alt="" height="121" src="https://cdn6.bigcommerce.com/s-ilcoov/product_images/uploaded_images/itil-training-organization-newlogosmall.jpg" width="280" /><img alt="" height="121" src="https://cdn6.bigcommerce.com/s-ilcoov/product_images/uploaded_images/prince2-training-organization-newlogo-small.jpg" width="280" /></a></span><br />
</span></span>
<p><strong>The U.S. Department of Commerce, National Institute of Standards and Technology (NIST) has included</strong> The Art of Service's Cyber Security Self Assessment on their Framework Industry Resources list since The Art of Service's Self Assessment <strong>is deemed qualified, accurate and comprehensive as a Guidance</strong> that Incorporates the Framework: <a href="http://zaale.com/l/J9dyb892892r4VxIWGcw892l7Etw/JD30yZjtfF8gGMjJAATnIQ/n76335WxF7X0ZOp8jzOaVJvA">https://www.nist.gov/cyberframework/industry-resources</a></p>
<span style="color:#000000"><span style="font-family:verdana"> </span></span>
<hr /></div>
<div style="text-align: center;"><br />
<span style="color:#000000"><span style="font-size:14px"><span style="font-size:16px">This message was sent to you because you are registered for this newsletter. We respect your privacy. If you no longer wish to receive emails, safely unsubscribe below.</span></span></span>
<p> </p>
<span style="color:#000000"> </span></div>
</div>
</td>
</tr>
<tr>
<td height="3" style="border-top: 3px double #e4e4e4; text-align: center; font-family: Verdana,Arial; font-size: 12px">
<p> </p>
<p>The Art of Service 22B/302 South Pine Road Brendale, Qld 4500 </p>
<p> </p>
<p><a href="http://zaale.com/unsubscribe/Wy763JeFxE4qMGmhSKRMkAv763BuYMqm5763oGLg5mhclm737S4GXMPll892vRLi9QonSx6n/USYcb2mwW4TN8KykVByKGQ/n76335WxF7X0ZOp8jzOaVJvA" >Manage Subscription</a> </p>
<p> </p>
</td>
</tr>
</tbody>
</table>
</center>
</body>
</html>
<img src="http://zaale.com/t/n76335WxF7X0ZOp8jzOaVJvA/J9dyb892892r4VxIWGcw892l7Etw" alt="" style="width:1px;height:1px;"/>