Not one of 21 Western Australian agencies audited by the state’s auditor general has been able to meet the international 27002 standard for information security.
The Office of the Auditor General Western Australia, headed by Colin Murphy, focused on three areas in its annual information systems audit report (PDF). These were a gap analysis of 21 agencies against the international standard for information security, ISO 27002; an audit of application controls for five business units within four state government departments; and a general computer controls and capabilities assessment of 44 agencies.
The gap analysis found that although two agencies came close, none actually met all the requirements of ISO 27002.
SOURCE: zdnet.com
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.