|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
ISMS [ISO 27001] |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
ISO/IEC 27001 is the formal standard against which organizations
may seek independent certification of their Information Security Management Systems
(meaning their frameworks to design, implement, manage, maintain and enforce information
security processes and controls systematically and consistently throughout the organizations).
The standard covers all types of organizations (e.g. commercial enterprises, government
agencies and non-profit organizations). It specifies the requirements for establishing,
implementing, operating, monitoring, reviewing, maintaining and improving documented
ISMS within the context of the organization’s overall risk management processes.
It specifies requirements for the implementation of security controls customized
to the needs of individual organizations or parts thereof. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
ISO/IEC 27001 provides an ISMS model for adequate and proportionate
security controls to protect information assets and give confidence to interested
parties. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Advantage KBS: |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
- Ensure that security risks are cost-effectively managed
- Ensure compliance with laws and regulations
- Aligned with up-to-date technologyrequirements
- Identification and clarification of existing information
security management processes
- Commitment to the protection of information and assets
– whether held on paper, electronically, or as employee knowledge
- Qualified and experienced pool of auditors spread throughout
India.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|