ISO/IEC 27001:2005 is an international standard for Information Security Management Systems. Closely allied to ISO/IEC 17799:2005. this standard (sometimes called the ISMS standard) can help organizations meet all their information-related regulatory compliance objectives and can help them prepare and position themselves for new and emerging regulations.
Information is the lifeblood of today's organization and, therefore, ensuring that information is simultaneously protected and available to those who need it, is essential to modern business operations. Information systems are not usually designed from the outset to be secure. Technical security measures and checklists are limited in their ability to protect a complete information system. Management systems and procedural controls are essential components of any really secure information system and, to be effective, need careful planning and attention to detail.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment