没有合适的资源?快使用搜索试试~ 我知道了~
一招教会你执行ISO27001
需积分: 16 22 下载量 178 浏览量
2009-12-09
17:12:55
上传
评论
收藏 1.17MB PPT 举报
温馨提示
试读
46页
全英文的培训教材,精炼。看过之后一定会觉得有帮助的,对安全标准这一块比较有帮助,符合P-D-C-A模式
资源推荐
资源详情
资源评论
p/2
ISO 27001 – An Introduction
ISO 27001 is
•
A standard for Information Security Management System (ISMS)
•
Provides the ISMS requirements and specifications of controls for
certification
•
Establishes PDCA approach to ISMS
•
Aligned with ISO 9001/ ISO 14001
•
Mature & being nurtured (Past, present and future)
p/3
Benefits of ISO 27001
Improved effectiveness of Information Security
Market Differentiation
Provides confidence to trading partners, stakeholders, and
Customers (certification demonstrates 'due diligence')
The only standard with global acceptance
Potential lower rates on insurance premiums
Compliance with mandates and laws
(e.g., Data Protection Act, Communications Protection Act)
p/4
Benefits of ISO 27001
Standard covers IT as well as organization, personnel, and facilities
Focused staff responsibilities
Independent review of the Information Security Management
System
Better awareness of security
Combined resources with other Management Systems (e.g. QMS)
Mechanism for measuring the success of the security controls
p/5
What is Information Security
Ensuring that
information is
accessible only to
those authorized to
have access
Ensuring that
authorized users
have access to
information and
associated assets
when required
Safeguarding the
accuracy and
completeness of
information and
processing methods
Information
Threats
Availability
ISO 27001 defines this as the preservation of:
Integrity
Confidentiality
security
security
security
security
Vulnerabilities
Risks
剩余45页未读,继续阅读
资源评论
gfkaspersky
- 粉丝: 0
- 资源: 7
上传资源 快速赚钱
- 我的内容管理 展开
- 我的资源 快来上传第一个资源
- 我的收益 登录查看自己的收益
- 我的积分 登录查看自己的积分
- 我的C币 登录后查看C币余额
- 我的收藏
- 我的下载
- 下载帮助
安全验证
文档复制为VIP权益,开通VIP直接复制
信息提交成功