ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining, and continually improving an information security management system (ISMS) for any organization, regardless of type or size. In today’s global economy, every business must have a system in place to maintain the confidentiality, integrity, and availability of information. This will include a company’s own information as well as customer information and other interested parties. In an increasingly interconnected world, the wisdom of doing this cannot be overestimated.
ISO/IEC 27001:2013 is the world’s most widely used and accepted standard for information security. It is referenced in virtually every national and international security framework including the new NIST Cybersecurity Framework and the UK Government Security Policy Framework.
Our webinar will discuss the layout of the new standard and some of its key differences and improvements from the previous standard. Additionally, the Executive Overview will outline how management can support and optimize the company’s security posture by implementing an ISO/IEC 27001 management system, as well as describe the benefits to top management members and stakeholders.
Participants will receive a high-level introduction to the basic clauses of ISO/IEC 27001:2013 and an overview of the requirements which includes information on transitioning from ISO/IEC 27001:2005. Participants will be encouraged to ask specific questions about ISO/IEC 27001:2013 and information security issues in general.
Objectives:
• Get introduced to the new ISO/IEC 27001:2013
• Learn the new standard's high-level structure
• Learn the key changes and improvements
• Review the requirements of the Standard
• Get insight to the best practices and industry
standards for ISO/IEC 27001:2013
• Understand how using ISO/IEC 27001:2013 can bring a return on investment
