Here is a free document I created a while back and which I feel hasn’t received as much attention as it should have (because it’s pretty good!). And it’s a useful reference if you ever decide to follow the route of implementing ISO 27001. Which you should by the way…although I’m biased…a bit.
This ISO 27001 step by step guide is intended for use once you’ve decided that your organisation needs to develop its Information Security Management System and achieve a successful certification.
ISO 27001 is THE standard for information security. Once your organisation obtains the certification and by demonstrating that you continue to operate to the system you have developed and implemented, then you will be doing a great job at making the data you hold more secure. As well as having plans in place to detect and deal with any security incidents.
This is all about lowering your risk…and about opening up opportunities for your organisation.
This guide describes all the steps needed to achieve an ISO 27001 successful implementation, taking ISO 27001 step by step.