dcsimg

How to implement an ISMS aligned with ISO 27001

The rise of cyber attacks and data privacy concerns has information security a top priority for organisations. Many have chosen to mitigate the risk by implementing an ISMS (information security management system).  An ISMS is a system of processes, documents, technology and people that helps organisations manage, monitor and improve their information security in one place.  ISO 27001 is the … [Read more...]

The benefits of implementing an ISMS

The international standard ISO/IEC 27001:2013 (ISO 27001) sets out the requirements for an ISMS (information security management system), an approach to securing information that relies on regular risk assessments to ensure the measures you put in place are appropriate to the threats you face and your risk appetite.  There are three main reasons to implement an … [Read more...]

How an ISO 27001-compliant ISMS helps you comply with the GDPR

Organisations have struggled with the GDPR (General Data Protection Regulation) since it took effect just under a year ago.  But compliance help is easier than you might expect. ISO 27001, the international standard for implementing and maintaining an ISMS (information security management system), has a lot in common with the GDPR – and unlike the … [Read more...]

3 essential controls that can keep your organisation safe from cyber threats

Organisations that want a proven, structured approach to information security should look no further than ISO 27001. The Standard describes best practice for implementing and maintaining an ISMS (information security management system), which is built around a system of controls that protects your information from a wide variety of threats. The full list of controls is listed in Annex A of … [Read more...]

Securing 2019 with ISO 27001

2018 was a mixed bag for information security. According to the Identity Theft Resource Center’s 2018 End-of-Year Data Breach Report, there were fewer recorded data breaches compared to 2017, but there was a 126% increase in the number of breached records. As you might expect, the business sector suffered both the most data breaches (571 of 1,244 total) and the highest number of breached … [Read more...]

July book of the month: A bumper ISO 27001 edition

Every month, IT Governance selects a book of the month from our extensive catalogue of cyber security guides, but this month we’ve been decided that one book just wasn’t enough. That’s why we’ve picked The ISO 27001 Expertise Bundle, which comprises four invaluable guides to help you understand and implement the information security standard.  Here’s an overview of each book and why you … [Read more...]

Is your organisation prepared for a cyber attack

Cyber attacks are increasing in volume and sophistication, and the financial and reputational damage to an organisation caused by an ineffectual information security posture can be fatal. Implementing an ISO 27001-certified ISMS (information security management system) can help to protect your organisation against such threats and demonstrates that you have taken the necessary steps to protect … [Read more...]

5 ways to become a successful distance learning student

Distance learning has opened doors for people who want to gain new skills but for whatever reason are unable to take traditional, classroom-based courses. However, we understand that the idea of studying by yourself can seem like a daunting, and perhaps even an isolating, experience. But there’s much less to fear than you might think. There are a lot of similarities to classroom-based learning – … [Read more...]

5 practical tips for planning ISO 27001 internal audits

Control A15.2 of ISO 27001 requires that, as part of an information security management system (ISMS), “managers within an organisation ensure that security policies are followed”. This sounds very sensible – but how do you know that managers are actually enforcing your ISMS security policies? The answer is regular ISMS internal audits, and it usually falls to the information security manager or … [Read more...]

Infographic: 5 benefits of distance learning

This month, IT Governance Europe launched its ISO27001 Certified ISMS Foundation (Distance Learning) training course. This modular recording of our popular one-day classroom course, which is delivered in Cork and Dublin, is the ideal starting point for all prospective ISO 27001 project managers and auditors, or anyone who wishes to build a career in information security management. It provides a … [Read more...]