overview of information security breaches in 2012 and how iso 27001 audit can help

451 views

Published on

ISO 27001 is an internationally recognized standard that addresses information security. Implementing a well-known standard as a measure of effectiveness will greatly improve the effectiveness of your information security program. It can also provide guidance in the development of a security strategy. Earning certification can make information security audits less difficult, too. Take a look at the infoGraphic below to see how ISO 27001 can help you.

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
451
On SlideShare
0
From Embeds
0
Number of Embeds
7
Actions
Shares
0
Downloads
8
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

overview of information security breaches in 2012 and how iso 27001 audit can help

  1. 1.       ASYSTEMATICAPPROACHWHICHYOURAUDITORSUSE,HELPSTOANTICIPATETHREATSTOYOURORGANIZATION'S INFORMATIONASSETS,ANDDEVELOPPLANSTOMITIGATETHEM.THEBESTPOLICYISTOADOPT ISO27001,THEMOSTUNIVERSALLYACCEPTEDSTANDARDFORINFORMATIONSECURITYTHEWORLDOVER. Formoreinfo Contactus@info@intiGrow.com REGISTERFORA2DAYFREEISO-27001GAP ANALYSIS-DIPSTICKASSESSMENT: http://www.intigrow.com/free-information- security-assessment-offer.html 1GAPANALYSISINTIGROWSECURITYPROFESSIONALSWILL CONDUCTANANALYSISOFGAPSINYOURCURRENTSYSTEMAGAINST THEREQUIREMENTSOFISO27001INCLUDINGAPHYSICALSECURITY REVIEW. 2RISKASSESSMENTTHISISTHEMOSTCRUCIALPHASEOFTHE IMPLEMENTATION,WHEREINANASSETREGISTERCONTAININGALLTHE INFORMATIONASSETSOFTHEORGANIZATIONISBUILT. 3RISKTREATMENTDURINGTHISPHASEINTIGROWWILL FORMULATEASTRATEGYFORTHEIMPLEMENTATIONOFTHE CONTROLSSELECTEDINTHEPREVIOUSPHASE. 4CONTROLIMPLEMENTATIONTHEIMPLEMENTATIONROADMAP, WHICHISTHEOUTCOMEOFTHEPREVIOUSPHASEWILLGUIDEYOURORGA NIZATION'STEAMINTHEIMPLEMENTATIONOFTHEIDENTIFIEDCONTROLS. 5ISMSREADINESSREVIEWTHISPHASEWILLREVIEWYOUR READINESSTOACHIEVEISO27001CERTIFICATION. 6CERTIFICATIONAUDITFINALLY,YOUWILLFACETHE CERTIFICATIONBODY'STEAMOFAUDITORSWITHOURASSISTANCE. ISO27001ISTHEONLYAUDITABLEINTERNATIONALSTANDARDWHICHDEFINESTHE REQUIREMENTSFORANINFORMATIONSECURITYMANAGEMENTSYSTEMISMS. ISO27001IMPLEMENTATIONSTRATEGYIS BASEDONAPHASEDAPPROACH: UNDERSTANDINGANDCOMMUNICATINGTHERISKSIS KEYTOEFFECTIVESECURITY 93%42% 33% 26% OFLARGEORGANISATIONSDON’TPROVIDEANY ONGOINGSECURITYAWARENESSTRAININGTO THEIRSTAFFAND10%DON’TEVENBRIEFSTAFF ONINDUCTION OFRESPONDENTSHAVEN’TBRIEFEDTHEIRBOARDON SECURITYRISKSINTHELASTYEARAND19%HAVE NEVERDONESO OFLARGEORGANISATIONSSAYRESPON SIBILITIESFORENSURINGDATAIS PROTECTEDAREN’TCLEARANDONLY 22%SAYTHEYAREVERYCLEAR OFCOMPANIESWHERETHESECURITY POLICYWASPOORLYUNDERSTOOD HADSTAFFRELATEDBREACHES VERSUS47%WHERETHEPOLICY WASWELLUNDERSTOOD SECURITYBREACHESREACHHIGHESTEVERLEVELSIN2012 93% 87% OFLARGEORGANISATIONSHADA SECURITYBREACH OFSMALLBUSINESSESHADASECURITYBREACH UPFROM76%AYEARAGO OVERVIEWOFINFORMATIONSECURITYBREACHESIN2012 ANDHOWISO27001AUDITCANHELP OFTHEWORSTSECURITYBREACHES INTHEYEARWERECAUSEDBY INADVERTENTHUMANERRORAND AFURTHER10%BYDELIBERATE MISUSEOFSYSTEMSBYSTAFF OFTHESE 36% 57% 17% OFSMALLBUSINESSESKNOW THEIRSTAFFBROKEDATA PROTECTIONREGULATIONSIN THELASTYEARUPFROM11%A YEARAGO OFSMALLBUSINESSESSUFFERED STAFFRELATEDSECURITY BREACHESINTHELASTYEARUP FROM45%AYEARAGO

×