...
13 May 2016 at 13:00 UTC
Agenda
...
- Minutes of last meeting (4th May 2016)
...
- Look at SCI version 1 document and discuss questions raised by Adam Slagell
...
- What are we trying to accomplish beyond creating the self-assessment, and did we meet those goals?
...
- Do we need to extend the scope of the document, or should we focus on getting more impact from the first document (especially if we didn’t meet all our goals the first time)?
...
- What does it mean to get acceptance by the DII’s, and have we achieved that?
...
- Depending on where these lead, we might conclude that what we really want is more organizations doing the self-assessment and to have these results published centrally or otherwise. I could see that certainly helping those of us looking for resources or justification for the different components of our security program efforts.
...
- Taking this hypothetical further, if that is our goal, a reasonable next step is to develop a guideline for the assessment.
...
- Comparison with Sirtfi V1.0 and ISO27002 (Alf Moens)
- Next steps
...
- Next meeting
Minutes
Present: David Kelsey
Apologies: Warren Anderson, Bob Cowles, Sven Gabriel, Hannah Short