The ISO 27001 contains a raft of measures aimed at ensuring organizational security from IT related risks.What the standard is aboutThe standard contains a set of specifications through which a company or organization can demonstrate that it is certified against IT related risks. An Information Security Management System (ISMS) is an important consideration for any forward looking company. The level of risk to company or organizational data must be analyzed and catered for.The ISMS standard provides a framework from which companies can approach organizational data security. The standard outlines the requirements for establishing and implementing a coherent data security system. It also involves monitoring and review of established security policies on an ongoing basis to meet new challenges.
SOURCE: ehacking.net
