April 26, 2019

ISO 27001 Information Security


PRINCIPLES OF ISO 27001 STANDARD

ISO 27001 defines how to manage information security through a series of information security management. The ISO 27001 standard is based on the Plan-Do-Check-Act methodology that should be continuously implemented in order to minimise risks to the confidentiality, integrity and availability of information. The phases are as following:

  • Plan: Serves to plan the basic organisation of information security, set objectives for information security and choose the appropriate security controls.
  • Do: Implement the planned processes.
  • Check: Monitor the functioning of the ISMS and measure if the results meet the set objectives.
  • Act: Take action to continually improve effectiveness on things that were identified as non-compliant in the previous phase.

 

iso-27001-2

  • ISO 27001 Master Certification

    The TUV Certified ISO/IEC 27001 Master certification is a professional certification for professionals needing to implement an Information Security Management System (ISMS) and to master the audit techniques and to manage (or be part of) audit teams and audit program.
  • ISO 27001 Foundation Certification

    The TUV Certified ISO/IEC 27001 Foundation certification is a professional certification for professionals needing to have an overall understanding of the TUV Certified ISO/IEC 27001 standard and its requirements.

 

Benefits of certification to ISO 27001…

  • Reassures your customers that you are securely managing their data to a high standard
  • Reduces the likelihood of a potential security breach and the costs associated with data loss
  • Enhances your reputation as a trustworthy business partner and demonstrates a commitment to best practice information security management