Shell’s Trust Domain Infrastructure Security Certification
Shell companies worldwide completed in 2000 a security programme, covering certification of their IT infrastructure against a subset of ISO 17799 and related ISO standards on certification and audit. Objective was to provide the Shell Group with a secure environment to do (”e”) business in, i.e. sharing of knowledge, enabling support for global applications and supporting virtual teamworking. The scheme is now up and running in more than 160 countries and 240 Shell companies. In this presentation I will describe background considerations on the Scheme as an example of business linked information security management. I will go as well into practical issues regarding roll-out and implementation of a global scheme like this. I will conclude with outlook for the Scheme, planned activities and issues.