ISO 27001 is an information security management standard. It's purpose is to help organizations to establish and maintain an Information Security Management System (ISMS). It defines a set of requirements that must be met if you want your ISMS to be formally certified.

The objective of the standard itself is to "provide a model for establishing, implementing, operating, monitoring, reviewing, maintaining, and improving an Information Security Management System".

Regarding its adoption, this should be a strategic decision. Further, "The design and implementation of an organization's ISMS is influenced by their needs and objectives, security requirements, the process employed and the size and structure of the organization".

The standard defines its 'process approach' as "The application of a system of processes within an organization, together with the identification and interactions of these processes, and their management". It employs the PDCA, Plan-Do-Check-Act model to structure the processes.
ISO 27001
Services
Support
Blog
Sitemap
Our Clients
Contact
Copyright © 2012 Adhere Consulting   •   All Rights reserved
Home | Blog | Newsletter | Sitemap
Visitor No:

No Poll Open

Please call for a free presentation
  0816 - 1318498
Address
  Ruko Golden Boulevard Blok S-58
  BSD City - Tangerang
  Phone : 021 - 68382572
  Fax     : 021 - 53154992

Services

Malcolm Baldrige Assessment
Six Sigma
ISO 9001
ISO 14001
ISO 22000
ISO 27001
Integrated Management System
OHSAS 18001
Human Resource Management
IT Management