Your SlideShare is downloading. ×
overview of information security breaches in 2012 and how iso 27001 audit can help
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×
Saving this for later? Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime – even offline.
Text the download link to your phone
Standard text messaging rates apply

overview of information security breaches in 2012 and how iso 27001 audit can help

183

Published on

ISO 27001 is an internationally recognized standard that addresses information security. Implementing a well-known standard as a measure of effectiveness will greatly improve the effectiveness of …

ISO 27001 is an internationally recognized standard that addresses information security. Implementing a well-known standard as a measure of effectiveness will greatly improve the effectiveness of your information security program. It can also provide guidance in the development of a security strategy. Earning certification can make information security audits less difficult, too. Take a look at the infoGraphic below to see how ISO 27001 can help you.

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
183
On Slideshare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
3
Comments
0
Likes
0
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1.       ASYSTEMATICAPPROACHWHICHYOURAUDITORSUSE,HELPSTOANTICIPATETHREATSTOYOURORGANIZATION'S INFORMATIONASSETS,ANDDEVELOPPLANSTOMITIGATETHEM.THEBESTPOLICYISTOADOPT ISO27001,THEMOSTUNIVERSALLYACCEPTEDSTANDARDFORINFORMATIONSECURITYTHEWORLDOVER. Formoreinfo Contactus@info@intiGrow.com REGISTERFORA2DAYFREEISO-27001GAP ANALYSIS-DIPSTICKASSESSMENT: http://www.intigrow.com/free-information- security-assessment-offer.html 1GAPANALYSISINTIGROWSECURITYPROFESSIONALSWILL CONDUCTANANALYSISOFGAPSINYOURCURRENTSYSTEMAGAINST THEREQUIREMENTSOFISO27001INCLUDINGAPHYSICALSECURITY REVIEW. 2RISKASSESSMENTTHISISTHEMOSTCRUCIALPHASEOFTHE IMPLEMENTATION,WHEREINANASSETREGISTERCONTAININGALLTHE INFORMATIONASSETSOFTHEORGANIZATIONISBUILT. 3RISKTREATMENTDURINGTHISPHASEINTIGROWWILL FORMULATEASTRATEGYFORTHEIMPLEMENTATIONOFTHE CONTROLSSELECTEDINTHEPREVIOUSPHASE. 4CONTROLIMPLEMENTATIONTHEIMPLEMENTATIONROADMAP, WHICHISTHEOUTCOMEOFTHEPREVIOUSPHASEWILLGUIDEYOURORGA NIZATION'STEAMINTHEIMPLEMENTATIONOFTHEIDENTIFIEDCONTROLS. 5ISMSREADINESSREVIEWTHISPHASEWILLREVIEWYOUR READINESSTOACHIEVEISO27001CERTIFICATION. 6CERTIFICATIONAUDITFINALLY,YOUWILLFACETHE CERTIFICATIONBODY'STEAMOFAUDITORSWITHOURASSISTANCE. ISO27001ISTHEONLYAUDITABLEINTERNATIONALSTANDARDWHICHDEFINESTHE REQUIREMENTSFORANINFORMATIONSECURITYMANAGEMENTSYSTEMISMS. ISO27001IMPLEMENTATIONSTRATEGYIS BASEDONAPHASEDAPPROACH: UNDERSTANDINGANDCOMMUNICATINGTHERISKSIS KEYTOEFFECTIVESECURITY 93%42% 33% 26% OFLARGEORGANISATIONSDON’TPROVIDEANY ONGOINGSECURITYAWARENESSTRAININGTO THEIRSTAFFAND10%DON’TEVENBRIEFSTAFF ONINDUCTION OFRESPONDENTSHAVEN’TBRIEFEDTHEIRBOARDON SECURITYRISKSINTHELASTYEARAND19%HAVE NEVERDONESO OFLARGEORGANISATIONSSAYRESPON SIBILITIESFORENSURINGDATAIS PROTECTEDAREN’TCLEARANDONLY 22%SAYTHEYAREVERYCLEAR OFCOMPANIESWHERETHESECURITY POLICYWASPOORLYUNDERSTOOD HADSTAFFRELATEDBREACHES VERSUS47%WHERETHEPOLICY WASWELLUNDERSTOOD SECURITYBREACHESREACHHIGHESTEVERLEVELSIN2012 93% 87% OFLARGEORGANISATIONSHADA SECURITYBREACH OFSMALLBUSINESSESHADASECURITYBREACH UPFROM76%AYEARAGO OVERVIEWOFINFORMATIONSECURITYBREACHESIN2012 ANDHOWISO27001AUDITCANHELP OFTHEWORSTSECURITYBREACHES INTHEYEARWERECAUSEDBY INADVERTENTHUMANERRORAND AFURTHER10%BYDELIBERATE MISUSEOFSYSTEMSBYSTAFF OFTHESE 36% 57% 17% OFSMALLBUSINESSESKNOW THEIRSTAFFBROKEDATA PROTECTIONREGULATIONSIN THELASTYEARUPFROM11%A YEARAGO OFSMALLBUSINESSESSUFFERED STAFFRELATEDSECURITY BREACHESINTHELASTYEARUP FROM45%AYEARAGO

×