Click here to request our Course Calendar
What is an ISMS?
An ISMS (Information Security Management System) is a systematic method to managing confidential organization data to ensure that it stays safe. It consist of people, processes and IT systems by implementing a risk management procedure. It is able to support small, medium and large businesses in all kinds of industry to keep information resources safeguarded.
The 2013 information security breaches survey unveils that attacks towards small businesses have heightened by 10% within the last year, costing up to 6% of their turnover.
Source: The 2013 Information Security Breaches Survey
The ISO 27000 family of standards helps your organization in managing the security of assets for example financial data, intellectual property, employee data or information entrusted to you by third parties.
ISO/IEC 27001 is the best-known standard within the family offering REQUIREMENTS for an ISMS.
Certification to ISO/IEC 27001
Same as other ISO management system standards, certification to ISO/IEC 27001 is attainable yet not compulsory. Some organizations decide to apply the standard so that they can benefit from the best practice it features whereas others consider to get certified to reassure clients and customers that they have been sticking with its recommendations.
Why do I need to get my organization certified?
More than 22,000 organizations in 105 countries & economies are certified at the end of 2013.
Source: The ISO Survey of Certifications 2013