Iso 27001 - Information Security - Doc Download - CiteHR
Iso27001consultant
Iso Certification Provider

Prime Sponsor - FactoHR.com - Payroll Software with GPS Enabled Attendance, Travel, Performance Management, HRMS. Explore Features
The ISO 27001 standard was published in October 2005, essentially replacing the old BS7799-2 standard. It is the specification for an ISMS, an Information Security Management System. BS7799 itself was a long standing standard, first published in the nineties as a code of practice. As this matured, a second part emerged to cover management systems. It is this against which certification is granted. Today in excess of a thousand certificates are in place, across the world.

ISO 27001 enhanced the content of BS7799-2 and harmonized it with other standards. A scheme has been introduced by various certification bodies for conversion from BS7799 certification to ISO27001 certification.
The objective of the standard itself is to "provide a model for establishing, implementing, operating, monitoring, reviewing, maintaining, and improving an Information Security Management System". Regarding its adoption, this should be a strategic decision. Further, "The design and implementation of an organization's ISMS is influenced by their needs and objectives, security requirements, the process employed and the size and structure of the organization".
The standard defines its 'process approach' as "The application of a system of processes within an organization, together with the identification and interactions of these processes, and their management". It employs the PDCA, Plan-Do-Check-Act model to structure the processes, and reflects the principles set out in the OECG guidelines (see oecd.org).

Thanks
KM

Source:: ISO 27000 - An Introduction to ISO 27001 / ISO27001
Cite.Co is a repository of information created by your industry peers and experienced seniors sharing their experience and insights.
Join Us and help by adding your inputs. Contributions From Other Members Follow Below...
  • Ensures compliance with mandates and laws
  • Provides the means for information security corporate governance
  • Provides satisfaction and confidence of that customers' information security requirements are being met
  • Allows for focused staff responsibilities
  • Improves the effectiveness of the information security environment
  • Allows for market differentiation due to a positive influence on company prestige and image, as well as a possible effect on the asset or share value of the company
  • Reduces liability and risk due to implemented or enforced policies and procedures, which demonstrate due diligence
  • Facilitates better awareness of security throughout the organization
  • Provides competitive advantages and reduction in costs connected with the improvement of process efficiency and the management of security costs
  • Potentially lowers rates on insurance

Source: Benefits of an ISMS <link updated to site home> ( Search On Cite | Search On Google )
The ISO 27001 certification implements the information secuirty system within the organization as per ISO 27001:2005 standard. The ISO 27001 Information Security System is part of a growing family of international standard ISO/IEC 27001 - Information Security Management Systems (ISMS) standards.

Attached Files
Membership is required for download. Create An Account First
File Type: doc AS1 - ISO27001-certification.doc (41.0 KB, 94 views)
File Type: doc AS 2 - ISO27001-certification.com.doc (35.0 KB, 53 views)

Prime Sponsor - Talentedge.com "Interactive Anywhere Learning". Executive courses from top reputed institutes like IIM, XLRI, MICA. View Courses
This discussion thread is closed. If you want to continue this discussion or have a follow up question, please post it on the network.
Add the url of this thread if you want to cite this discussion.






About Us Advertise Contact Us
Privacy Policy Disclaimer Terms Of Service



All rights reserved @ 2019 Cite.Co™