Further Help

Please note that inclusion of companies/organisations in these pages does not reflect any form of endorsement by BERR. Links are given because sites may provide information/services that you may find useful. This is by no means a definitive list and you are advised to research any company and products carefully prior to purchasing goods or services.

General

BERR Information Security Health Check Tool

BERR Information Security Home Page

BERR Information Security Business Advice

BERR Information Security Publications (available to order or download)

Alert services

Crime and emergency contacts

Home Office Crime & Policing (Internet Crime)

Internet Watch Foundation (provides a focus for removing illicit material from the Internet).

Serious Organised Crime Agency (SOCA)

Government sites

Department for Business, Enterprise and Regulatory Reform (BERR)

Information Commissioner (oversees and enforces compliance with both the Data Protection Act 1998 and Freedom Of Information Act 2000)

Hardening operating systems

Hotfixes and patches

HP UNIX Fixes

Microsoft

Sun OS Fixes

Human resources

The following links provide information on Human Resources practices. The Information Commissioner, although focusing on data protection, has published a range of guides on a number of HR related practices. The CIPD provides guidance on all matters relating to Human Resources but has relevant sections regarding information security.

Chartered Institute of Personnel & Development (CIPD)

Information Commissioner

Information providers

OPSI (previously HMSO) (delivers a wide range of services to the public, information industry and government relating to access and re-use of government information)

Institutes and organisations

APACS (the UK payments trade association for institutions delivering payments services to end customers)

CBI

Computer Security Institute (a membership organisation serving and training the information, computer and network security professional)

Disaster Recovery Institute International

Information Security Forum (independent authority delivering practical guidance and solutions to overcome wide-ranging security challenges which impact business information).

Institute of Chartered Accountants in England & Wales (ICAEW) IT Faculty

Institute of Directors

Institute of Information Security Professionals (IISP) (independent membership body set up to advance the professionalism of information security practitioners and the industry as a whole, and to act as an accreditation authority for the sector).

Intellect (trade body for the UK based information technology, telecommunications and electronics industry)

International Underwriting Association of London (IUA) Digital Risk Working Party

Mid Yorkshire Chamber of Commerce and Industry (helps the region's businesses counteract the risk of information security threats by providing tools and education to enable the implementation of best practices).

SANS Institute (information security training and certification)

The Business Continuity Institute (BCI)

tScheme (the independent, industry-led, self-regulatory scheme set up to create strict assessment criteria, against which Trust Services are approved)