ISO 27001 Preparation

The ISO 27000 series of standards is a catalog of international standards focused on information security and published by the International Organization for Standardization, with 270001 describing the requirements for an ISMS (information security management system).

A Framework Worth Following

An efficient way to improve data protection, manage IT risk and respond to existing compliance requirements is to adopt an international information security standard, namely ISO 27001. GM Sectec can help supply you with the expertise and technologies to get your business in alignment.

ISO: Fast Facts and Consequences

STANDARDS

The ISO 27000 series of standards is a catalog of international standards focused on information security and published by the International Organization for Standardization.

BEST PRACTICES

The most prominent from the series are ISO 27001, a management standard that can be audited, and ISO 27002, which specifies best practices and controls – but is not a certification standard.

ISO 27001 as a lifestyle

Think of ISO 27001 as a "lifestyle," whereas upholding day-to-day certification with the standard should be viewed as more important than point-in-time accreditation.

FOLLOWS THE PLAN

ISO 27001 follows the plan-do-act-check cycle.