Although many people consider ISO 27001 as a bureaucratic standard with no real benefits, actually the opposite is true – if it is implemented properly, not only will it enhance the marketing position of your organization, but it will also help you organize all information security activities in a clearly defined framework, and consequently decrease the level of risks.
Recently I delivered two webinars on the topic of ISO 27001, and I have asked the attendees to send me their top concerns regarding ISO 27001 implementation before those webinars.
Dejan Kosutic is an expert in information security management and business continuity management.
Learn what has changed in ISO 27001 using this easy to understand infographic, click the image to get the complete version: The key differences are detailed including:Most important areas of changeNew controls from Annex ANew requirements and requirements that are goneTransition period.Also included is a short history of information security standards.
IS&BCA released a free calculator that will help you estimate the time needed for your ISO 27001 or ISO 22301 implementation.