ISO-27001 is recognized as the gold seal for information security management compliance. You will probably want to incorporate some of the best practices of ISO-27002 into your efforts. These regulations cover numerous areas you will want to manage:
- Human Resources
- Asset Management
- Access Controls
- Cryptography
- Physical and Environmental Security
- Operations Security
- Communications Security
- Systems Development and Maintenance
- Incident Management
- Disaster Recovery and Business Continuity
- Supplier Relations
- Risk Management
Do you need to be ISO-27001:2013 compliance certified? We help businesses implement the needed controls to meet this international standard.
How is your ISMS holding up? Can it support the rapid change of your business? Does it remain compliant?