Professional Documents
Culture Documents
Iso-Iec 27001 Certification Overview 0-1
Iso-Iec 27001 Certification Overview 0-1
standard that provides the basis for ■ Adopt and demonstrate compliance with a structured,
internationally recognized approach to information security
effective management of confidential management
and sensitive information and the
■ Improve the storage, processing and transfer of business
application of information security and customer information, protecting confidential and
controls. sensitive information
■ Achieve a competitive differentiator for tendering and
It enables organizations to demonstrate excellence
procurement
and prove best practice in information security
management. ■ Ensure information security practices are ready for the
scrutiny of internal and external audits.
ISO/IEC 27001 provides a model to establish, implement,
maintain and continually improve an effective Information Security Conformance with the standard requires commitment to
Management System (ISMS). The design and implementation continually improve control of confidential and sensitive
of the management system is tailored to the organization’s information, providing reassurance to sponsors, shareholders
objectives, information assets, operational processes and and customers alike.
governing legal and regulatory security requirements.
FURTHER INFORMATION