A Framework Worth Following
An efficient way to improve data protection, manage IT risk and respond to existing compliance requirements is to adopt an international information security standard, namely ISO 27001. Trustwave can help supply you with the expertise and technologies to get your business in alignment.
ISO: Fast Facts and Consequences
- The ISO 27000 series of standards is a catalog of international standards focused on information security and published by the International Organization for Standardization.
- The most prominent from the series are ISO 27001, a management standard that can be audited, and ISO 27002, which specifies best practices and controls – but is not a certification standard.
- Think of ISO 27001 as a "lifestyle," whereas upholding day-to-day certification with the standard should be viewed as more important than point-in-time accreditation.
- ISO 27001 follows the plan-do-act-check cycle.