Security Certification Body (ISC)2 Defends Proposed Bylaw Changes

Security certification body (ISC) - the International Information System Security Certification Consortium - "is a non-profit organization providing training and certification for cybersecurity professionals," writes PortSwigger "Daily Swig" blog for cybersecurity news. "Over the last two years, it has been carrying out a review of its practices around committees, nominations, and governance." But some of the proposed bylaw amendments (announced earlier this month) drew criticism:According to Wim Remes, a former board member who spent three years as (ISC) chair, the organization currently has a poor record on member engagement, with election turnout averaging only around 4%. As things stand, 500 endorsements are required for members to raise a petition. However, the new proposals would see this figure raised to 1% of the 170,000-odd members. "This effectively shuts down an important relief valve in corporate governance, in my opinion, and is not in the interest of the membership," Remes told The Daily Swig. "It's already impossible to get up to 500. It's unthinkable anybody would make it to 1,600, [or] to 2,000." Also in the pipeline is a significant change to the process for electing the board of directors. If approved, this would remove the option for a write-in candidate and witness the board submitting a slate of qualified candidates to the membership that would be equal to the number of open seats. "Combined with making the petition process harder - if not impossible - this is as close to a coup by governance as one could get," Remes argued. "They still call it an election, but it is officially a coronation." Meanwhile, the Ethics Committee is to be eliminated as a standing committee of the board. Clar Rosso, CEO of (ISC)2, tells the site that the bylaw changes will be voted on by members, and will move the ethics process "from one that is majority board-run to a process that is adjudicated by a broader cross-section of members." "Additionally, many of these bylaw changes are reflective of best practices of other similarly-sized associations, and some simply provide clarity and ensure legal compliance with applicable state and federal laws. The (ISC) board of directors, comprised entirely of member volunteers, supports the proposed changes." Long-time Slashdot reader mencik shares a page offering nine alternate proposals to increase transparency - along with a petition for including them on the agenda of the group's next annual meeting. (Reminder: only ISC2 members can vote.)

Read more of this story at Slashdot.