ISMS Stands for Information Security Management System.
This standard was published in October 2005 by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). Its full name is ISO/IEC 27001:2005 - Information technology -- Security techniques -- Information security management systems -- Requirements but it is commonly known as "ISO 27001". This was first introduced in Britain for British Securities and thus this standard is also known as BS7799.
An organization?s most valuable and critical asset is its data. Security of the data is perhaps the most important requirement these days due to data hacking and other malicious bodies.
Having ISMS policy in place makes the information more secured in systematic manner. And being certified to ISO/IEC 27001 will always help an organization to manage and protect its valuable information assets.
ISO/IEC 27001 is the only auditable international standard which defines the requirements for an Information Security Management System (ISMS). The standard is designed to ensure the selection of adequate and proportionate security controls.
This helps you to protect your information assets and give confidence to any interested parties, especially the customers. The standard adopts a process approach for establishing, implementing, operating, monitoring, reviewing, maintaining, and improving your ISMS.
| Leave a Comment |
| Please logged in first to enter your comment. |
|