Go to Top

Information Security

What is ISO 27001?

ISO 27001 is the most widely recognized security standard in the world and defines the specification for an Information Security Management System (ISMS) for protection of Organization, Business and Commercial (related to Customer, Supplier, Employee, Shareholder and other interested parties), both in hard copy and soft copy. An ISMS is a system that allows an organization to monitor and control their security, minimizing risk and ensuring that security continues to fulfill the operations, customers and legal requirements.

Originally produced in 1995 by the UK Government’s Department of Trade and Industry, the British Standard BS 7799 provided a code of practice for the implementation of security controls to protect information within both commercial organizations and Government departments. In 2002, Part 2 of the standard was revised to bring the format in line with existing management standards such as ISO 9001, including use of the standard Plan, Do, Check, Act (PDCA) process model as used in ISO 9001. In 2005 it became the international standard ISO 27001.

Benefits of ISO 27001

ISO 27001 help organizations to implement information security controls in:

√ Ensure controls are in place to reduce risk of security threats.
√ Improve company image and a better reputation.
√ Improve business revenue.
√ Provide competitive advantage and market differentiation.
√ Demonstrate your capability without revealing your security processes.
√ Legislation compliance.
√ Clear channels and communication.

Contact us today to find out how CI International & CI (UK) can help your organization regards ISO 27001 certification.

Click here to download Application Questionnaire for certification application.