Thursday, October 16, 2008
ISO 27001 / ISO 27002 (formerly ISO 17799)
Is your organisation’s information as secure and well managed as it
should be?
What is ISO 27001 / ISO 27002?
ISO 27001 is closely associated with ISO 27002, which is a code of practice for Information Security Management.
ISO 27002 (formerly ISO 17799) provides a common and proven basis for developing high organisational security standards and effective security management practice.
ISO 27001 is the actual standard to which certification is measured. It sets out the requirements for an Information Security Management System (ISMS). An ISMS is a systematic approach to managing the security of sensitive information - encompassing people, processes, IT systems and policy.
ISO 27001 is designed to identify, manage and reduce the range of threats to which your information is regularly subjected.
What are the benefits?
ISO 27001 & ISO 27002 offer an excellent framework for those developing or enhancing their organisation’s security.
Certification provides many tangible benefits:
A valuable framework for resolving security issues
Enhancement of client confidence & perception of your organisation
Enhancement of business partners’ confidence & perception of your organisation
Provides confidence that you have managed risk in your own security implementation
Enhancement of security awareness within an organisation
Assists in the development of best practice
Can often be a deciding differentiator between competing organisations
How 7Safe’s experts can help
7Safe’s specialist consultants have a wealth of expertise in ISO 27001 / ISO 27002 (formerly ISO 17799), and can confidently assist you with compliance, implementation and training.
Call 7Safe now on 0870 600 1667 for a no obligation chat about your ISO 27001 / ISO 27002 requirements.
SCOPE
Scoping an ISO 27001 project is a fundamental part of any certification initiative.
7Safe will help you identify the business processes which are vital to your company, and in doing do will create a solid foundation for building an effective compliance strategy.
GAP ANALYSIS
Our consultants will perform a comprehensive assessment of your existing security processes and compare them to those required by the ISO 27001 standard. A detailed report will then be generated, identifying the actions required to attain compliance.
RISK ASSESSMENT
7Safe will help you evaluate the levels of information security risk involved in your business processes. Consequently, a risk treatment plan can be generated.
GAINING CERTIFICATION
7Safe’s consultants can guide you through the process of gaining certification. We will assist with final preparations to your ISMS and also act on your behalf when organising the audit progress. Many clients have found our close involvement to be extremely advantageous during this decisive stage of the process.
IMPLEMENTING IMPROVEMENTS
7Safe will rationalise the results of the gap analysis and the risk assessment to develop a comprehensive Security Improvement Programme. Our consultants will help you to implement the required security improvements. Our extensive experience means that we are able provide informed and practical solutions to issues that may arise in each area of the Standard.
ISO 27001 / ISO 27002 EDUCATION
7Safe’s ISO 27001 Fundamentals training course and university accredited Implementing ISO 27001 training course have proven to be increasingly valuable to individuals working within the area of information security management.
Download Datasheet (413k PDF)
RELATED LINKS
ISO 27001 Fundamentals Implementing ISO 27001
ISO 27001 Lead Auditor
PCI Fundamentals training course
more
Is your organisation’s information as secure and well managed as it
should be?
What is ISO 27001 / ISO 27002?
ISO 27001 is closely associated with ISO 27002, which is a code of practice for Information Security Management.
ISO 27002 (formerly ISO 17799) provides a common and proven basis for developing high organisational security standards and effective security management practice.
ISO 27001 is the actual standard to which certification is measured. It sets out the requirements for an Information Security Management System (ISMS). An ISMS is a systematic approach to managing the security of sensitive information - encompassing people, processes, IT systems and policy.
ISO 27001 is designed to identify, manage and reduce the range of threats to which your information is regularly subjected.
What are the benefits?
ISO 27001 & ISO 27002 offer an excellent framework for those developing or enhancing their organisation’s security.
Certification provides many tangible benefits:
A valuable framework for resolving security issues
Enhancement of client confidence & perception of your organisation
Enhancement of business partners’ confidence & perception of your organisation
Provides confidence that you have managed risk in your own security implementation
Enhancement of security awareness within an organisation
Assists in the development of best practice
Can often be a deciding differentiator between competing organisations
How 7Safe’s experts can help
7Safe’s specialist consultants have a wealth of expertise in ISO 27001 / ISO 27002 (formerly ISO 17799), and can confidently assist you with compliance, implementation and training.
Call 7Safe now on 0870 600 1667 for a no obligation chat about your ISO 27001 / ISO 27002 requirements.
SCOPE
Scoping an ISO 27001 project is a fundamental part of any certification initiative.
7Safe will help you identify the business processes which are vital to your company, and in doing do will create a solid foundation for building an effective compliance strategy.
GAP ANALYSIS
Our consultants will perform a comprehensive assessment of your existing security processes and compare them to those required by the ISO 27001 standard. A detailed report will then be generated, identifying the actions required to attain compliance.
RISK ASSESSMENT
7Safe will help you evaluate the levels of information security risk involved in your business processes. Consequently, a risk treatment plan can be generated.
GAINING CERTIFICATION
7Safe’s consultants can guide you through the process of gaining certification. We will assist with final preparations to your ISMS and also act on your behalf when organising the audit progress. Many clients have found our close involvement to be extremely advantageous during this decisive stage of the process.
IMPLEMENTING IMPROVEMENTS
7Safe will rationalise the results of the gap analysis and the risk assessment to develop a comprehensive Security Improvement Programme. Our consultants will help you to implement the required security improvements. Our extensive experience means that we are able provide informed and practical solutions to issues that may arise in each area of the Standard.
ISO 27001 / ISO 27002 EDUCATION
7Safe’s ISO 27001 Fundamentals training course and university accredited Implementing ISO 27001 training course have proven to be increasingly valuable to individuals working within the area of information security management.
Download Datasheet (413k PDF)
RELATED LINKS
ISO 27001 Fundamentals Implementing ISO 27001
ISO 27001 Lead Auditor
PCI Fundamentals training course
more
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment