This paper presents the results of an investigation on current security practices in Cypriot organisations, including enterprises and public sector divisions. To gain knowledge on the deployed security technologies by organisations, a survey was conducted and concluded in late 2010. The survey primarily examined compliance of current security policies and procedures with ISO 27001 security recommendations. A research analysis has been performed and identified that security mechanisms and the management of IT resources may be improved on a number of aspects. Based on the research findings, an assessment of the viability of ISO 27001 in Cyprus is given.
- ISO 27001
- Security practices