Learning Marketplace

ISO/IEC 27001 - A Case Study

In today's global economy, every business must have a system in place to maintain the confidentiality, integrity and availability of information. Company-specific information, customer information and that of other interested parties must be protected.

ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system (ISMS) for any organization, regardless of type or size.

As the world's most widely used and accepted standard for information security, ISO/IEC 27001 is referenced in virtually every national and international security framework, including the NIST Cybersecurity Framework and the UK Government Cyber Essentials Scheme.

While there is no shortage of education on the standard itself, including implementation and lead auditor courses, questions still arise regarding real-life scenarios surrounding the set of activities that need to be performed. Success of implementation hinges on the ability to prepare, organize, and plan effectively.

Our webinar will discuss the layout of ISO/IEC 27001:2013, a high-level introduction to the basic clauses and an overview of the requirements, along with the process behind a holistic approach to information security. In addition, we will present an implementation story and use case from one of our clients, describing how they optimized the company's security posture by implementing an ISO/IEC 27001 management system, as well as reviewing the benefits the standard has brought to top management and stakeholders.

Objectives:

  • Become introduced to the new ISO/IEC 27001:2013
  • Review the requirements of the standard
  • Get insight to the best practices and industry standards for ISO/IEC 27001:2013
  • Understand how using ISO/IEC 27001:2013 can bring a return on investment