It is an information security management systems(ISMS) and its full name is ISO/IEC 27001 - Information Technology-Security Techniques - Information Security Management Systems - Requirements
It is intended to bring information security under management control
ISMS brings the existing information security control in a organized structure
ISMS addressing data security, business continuity planning and physical security or IT as whole
ISMS systematically examine the organization's information security risks threats ,vulnerabilities and impacts
ISMS design and implement information security controls and forms of risk treatment
ISMS provide good practice guidance on designing ,implementing and auditing to protect the confidentiality ,integrity and availability
Conformity assessment
Benefits
Establishing assurance in internal controls and business continuity
Continual Performance Improvement
Managing information security effectively
Assurance to customers and suppliers
It will protect the confidentiality , integrity and availability of information
Reducing the risks of information loss and reducing the costs
Twitter
Studied or Worked here? Share Your Review
Please do not post:
Thank you once again for doing your part to keep Edarabia the most trusted education source.