Dedicated governance course debuts

The British Computer Society has added a qualification in information risk management, reports Computer Weekly.

The qualification is aimed at information security and assurance professionals. It uses international standards and takes a hands-on approach to risk assessment and management.

The syllabus covers concepts and the importance of information risk management, the risk management environment, risk assessment and management stages, and information classification schemes.

International auditing firm KPMG has found that 75% of United Arab Emirates (UAE) countries increased spend on information security last year, reports AME Info.

However, a survey conducted by the company found that not enough companies are taking a holistic approach to their business continuity and information security planning in the long-term.

"The survey shows that companies in the are increasingly depending on IT, and their spend has risen accordingly," commented Rajeev Lalwani, head of IT advisory practice for KPMG in the and Oman. "Yet 86% of companies are not considering international security standards such as ISO27001 when implementing information security management systems, and 55% allocate funds to projects on a case by case basis."

The Computer Security Institute and risk management solution provider Cenzic are to host a Web seminar, reports SYS Con.

The seminar aims to educate information security managers on best practices to ensure a safer, more efficient business process.

The seminar, entitled "Stop the Bleeding: Getting in Front of Vulnerabilities", will be held on Wednesday and information can be accessed online.