The series is deliberately broad in scope, covering more than just privacy, confidentiality and IT or technical security issues. It is applicable to organizations of all shapes and sizes.
All organizations are encouraged to assess their information security risks, then implement appropriate information security controls according to their needs, using the guidance and suggestions where relevant. Given the dynamic nature of information security, the ISMS concept incorporates continuous feedback and improvement activities.
The ISO 27000 has quickly evolved to become an important benchmark for information security. But how do you measure your compliance level? Thereafter, how should you plan and implement changes to improve the situation? In short, how do you shape up and what can you do to comply?
The answer….. Numero Uno for ISO 27000!