Organizations concerned about digital or computer forensics capability which establishes procedures and records to support a prosecution for computer crimes could benefit from implementing an ISO 27001: 2013-compliant (ISMS Information Security Management System). A certified ISMS adds credibility to information gathered in a digital forensics investigation; certification shows that the organization has an outsider which verifies that the correct procedures are in place and being followed. A certified ISMS is a valuable tool either when prosecuting an intruder or when a customer or other stakeholder seeks damages against the organization. SOC (Security Operation Center) as an organization or a security unit which handles a large volume of information requires a management complement, where ISMS would be a good choice. This idea will help finding solutions for problems related to digital forensics for non-cloud and cloud digital forensics, including Problems associated with the absence of standardization amongst different CSPs (Cloud service providers).
翻译:与数字或计算机法证能力有关的组织,建立程序和记录,支持对计算机犯罪的起诉,可受益于实施ISO 27001:2013年符合标准(ISMS信息安全管理系统),经认证的ISMS为在数字法证调查中收集的信息增加了可信度;认证表明,该组织有外部人员核查正确程序已经到位并正在遵循;经认证的ISMS是宝贵的工具,在起诉入侵者时或当客户或其他利益悠关者寻求对该组织的损害时,或当客户或其他利益悠关者寻求赔偿时。 SOC(安全行动中心)作为一个组织或安保单位处理大量信息需要管理补充,而ISMS将是一个良好的选择。这一想法将有助于为与数字法证有关的非云层和云层数字法证问题找到解决办法,包括与不同CSP(Cloud服务供应商)之间缺乏标准化有关的问题。