06 September 2016

IRM joins the Information Security Forum (ISF)

Press Release: 6th September 2016, from IRM Ltd.

Cyber risk management specialist IRM has joined the Information Security Forum (ISF), the world’s leading authority on cyber security and information risk management, to enhance its capabilities with the organisation’s vast library of threat intelligence.

The ISF is dedicated to investigating, clarifying and resolving key cyber and information security issues by developing best practice methodologies, processes and solutions that meet the business needs of its members. The global organisation has members ranging from major corporations and Fortune 500 companies to governmental departments public sector bodies and smes.

As a member of the ISF, IRM will benefit from access to a wide-range of research, practical tools and guidance to overcome the security challenges that impact businesses today. IRM will also be participating in the ISF’s workshops, meetings and online forums to share and discuss the latest knowledge from the global information security community, and bringing all of this knowledge through to its customers.

By accessing the ISF’s international community and repository of knowledge, IRM aims to help increase the skillset of its team and future-proof both arms of the business as the threat landscape continues to evolve. It will also to help increase the ISF’s knowledge base in return with the insights IRM has gained after more than 17 years in the industry.

Phil Mason, Commercial Director at IRM, comments:

“We feel there is a great fit with the ISF as we’ve also been around for many years and have seen the industry evolve. Like them, we have been trying to educate companies and move them away from the tick box, compliance-driven attitude to a more risk-based approach. Although there is a long way to go, we’re finally seeing this change take hold, so the timing feels right for us to become an ISF member. 

“We’re seeing security heads realise the need to justify the controls they have in place, rather than just following guidelines. It’s not about outrunning the threat; it’s about staying as close as possible to understand it. Organisations need to be aware of the likelihood and the impact of a threat changing, and what the risk looks like. The tools and methodologies the ISF has developed around things like managing and controlling information security and risk provide a consistent language for that outcome.”