Increasingly, business is carried out over computer networks.
Events affecting the integrity of information may affect a company's ability to
continue doing business. Organizations must have processes in place to ensure
that information is protected and prove their accountability with regulating
agencies and the public.
Designed to protect information assets, the ISO/IEC 27001:2005 standard specifies requirements for an information security management system (ISMS). The requirements cover establishing, implementing, operating, monitoring, reviewing, maintaining and improving a documented ISMS within the context of the organization's overall business risks. The standard, which mandates specific requirements to bring information security under management control, can be applied to any type of business, organization or industry.
ABS Quality Evaluations (ABS QE) can formally audit and certify your organization to ensure compliance with the standard. We can also help your organization use ISO 27001 to: