Learning Marketplace

ISO/IEC 27001:2013 - What you need to know about the change

The new version of ISO/IEC 27001 Information Security Management has been released. As certification to this standard continues to grow globally, this revision helps ensure the standard’s continued relevance to the issues and challenges companies face today.

ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system (ISMS) for any organization, regardless of type or size. BSI recommends that every business has a system in place to maintain the confidentiality, integrity and availability of information. This includes its own information as well as customer information and other interested parties. In an increasingly interconnected world the wisdom and value of applying ISO/IEC 27001:2013 cannot be underestimated.

Participants will develop a understanding of:
• The key differences between ISO/IEC 27001:2013 and ISO/IEC 27001:2005
• The transition timelines for certified organizations
• The impact that the new standard is likely to have on an existing ISMS
• Where to start in the transition between ISO/IEC 27001:2005 and ISO/IEC 27001:2013

Presenter: Robert Whitcher is an Information Security and IT professional with over 32 years experience in the IT industry and more than 22 years experience in Information Security, Privacy and business continuity. He has experience at a senior management level for, and practical experience of, information security and business continuity.