Webmail woes call for ISO 27001

Doug Schweitzer raises an interesting point about the potential for webmail users to circumvent the best network security arrangements. He’s absolutely right when he says that the only realistic answer can be the right corporate policy supported by compliance audit and awareness programmes. Without stating it, his post is a call for a widespread adoption of ISO 27001, which directly addresses the security vulnerabilities that arise when technology and human beings interact, i.e. the real world.