dcsimg

Learn how to implement and maintain an ISO 27001-compliant ISMS with IT Governance

ISO 27001 is one of the most popular cyber security standards in the world, with the number of organisations achieving certification growing by more than 450% in the past 10 years. The Standard outlines best practice for an ISMS (information security management system). Achieving accredited ISO 27001 certification demonstrates that your organisation is … [Read more...]

The benefits of implementing an ISMS

The international standard ISO/IEC 27001:2013 (ISO 27001) sets out the requirements for an ISMS (information security management system), an approach to securing information that relies on regular risk assessments to ensure the measures you put in place are appropriate to the threats you face and your risk appetite.  There are three main reasons to implement an … [Read more...]

What is an ISMS and why does your organisation need one?

Those getting started in the information security industry might be wondering why experts are telling them to implement an ISMS. We’re here to explain.  An ISMS (information security management system) is essential for any organisation that’s serious about security. It’s a centrally managed framework that enables you to manage, monitor, review and improve your … [Read more...]

How an ISO 27001-compliant ISMS helps you comply with the GDPR

Organisations have struggled with the GDPR (General Data Protection Regulation) since it took effect just under a year ago.  But compliance help is easier than you might expect. ISO 27001, the international standard for implementing and maintaining an ISMS (information security management system), has a lot in common with the GDPR – and unlike the … [Read more...]

What is an information security policy?

An information security policy is a set of instructions that an organisation gives its staff to help them prevent data breaches. Employees are involved in many of the most common causes of security incidents, whether directly (such as accidental breaches) or indirectly (such as phishing scams), so thorough guidelines are essential. How do you create information security policies? Your … [Read more...]

Further your career with certified ISO 27001 training

At IT Governance Europe, we believe that an ISO 27001 qualification is something that every cyber security professional should have. As such, we’ve made our ISO 27001 courses available in classrooms, online and in-house. These courses have been designed to teach attendees the skills required to plan, implement, maintain and audit a best-practice information security management system (ISMS) in … [Read more...]

Securing 2019 with ISO 27001

2018 was a mixed bag for information security. According to the Identity Theft Resource Center’s 2018 End-of-Year Data Breach Report, there were fewer recorded data breaches compared to 2017, but there was a 126% increase in the number of breached records. As you might expect, the business sector suffered both the most data breaches (571 of 1,244 total) and the highest number of breached … [Read more...]

July book of the month: A bumper ISO 27001 edition

Every month, IT Governance selects a book of the month from our extensive catalogue of cyber security guides, but this month we’ve been decided that one book just wasn’t enough. That’s why we’ve picked The ISO 27001 Expertise Bundle, which comprises four invaluable guides to help you understand and implement the information security standard.  Here’s an overview of each book and why you … [Read more...]

3 reasons why ISO 27001 certification helps employees

We often talk about how organisations can benefit from implementing ISO 27001, the international standard that describes best practice for an ISMS (information security management system), but did you know that employees can benefit too?  Here are three reasons why you’d be better off working for an ISO 27001-certified organisation.  1. It leads to more work Organisations that adopt ISO 27001 … [Read more...]

Ireland warned it is extremely vulnerable to cyber attacks

The National Cyber Security Centre (NCSC), which oversees Ireland’s cyber security, issued a warning last week that some government websites were being used to illegally mine cryptocurrency. The NCSC said that it “is aware that a number of websites using software from a third-party vendor is causing visitors to those sites to mine cryptocurrency without their express permission”. It is understood … [Read more...]