Information technology

ISO 27001 has been developed to provide a model for the establishment, implementation, execution, monitoring, review, maintenance and improvement of an information technology management system (ISMS). To implement an ISMS the policy, targets, processes and procedures regarding security have to be defined.

Target of the standard: Secure the selection of adequate and appropriate security measures to protect information values and to raise customer confidence.

For whom?: For every company no regardless of size or industry-sector (e.g. commercial companies, authorities, non-profit-organisations)

Benefits:

• Reliable proof, that measures for basic IT protection have been realized.
• Customer expectations and legal requirements regarding confidentiality and integrity of data and information are fulfilled
• Exchange of information and simultaneous protection of information and values is secured
• Prevention/reduction of economical losses due to Prevention or reduction of security incidents