Académique Documents
Professionnel Documents
Culture Documents
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
3 Your information is your asset!
What is ISO 27001 ISMS?
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.
Information is an Asset
4
Information is
the lifeblood for
our personal
activities as well
as for business
organizations
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
What is Information?
5
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
Information & Business
6
Information is
For a business,
collected on any All information
Information is a
amount of different related to
valuable resource,
items and used by organizations’
just as much as
managers to make internal & external
capital
strategic decisions environment is an
infrastructure and
concerning the Asset
people
organisation
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
Why Information is an Asset?
7
suitably protected!
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
10 The need for Information Security
What is ISO 27001 ISMS?
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.
What is Information Security?
11
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
Need of Information Security
12
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
What is information Security?
13
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
Components of Information Security
14
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
Information Security in Networked
Economy
15
Authenticity
Business
transactions as well
as information
exchanges between
enterprise locations
or with partners
can be trusted
Non-
repudiation
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
Consequences of Information
Security Breaches
16
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
17 About ISO 27001 ISMS
What is ISO 27001 ISMS?
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.
What is ISMS?
18
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
What is ISO 27001 ISMS?
19
The Standard:
Provides strategic and tactical direction
Recognizes that Information Security is a Management issue
Non-technical
Structured similar to ISO 9001 and ISO 14001
Easy Integration
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
History of ISO27001
20
Industry code of practice
ISO/IEC 17799
ISO/IEC 27001
ISO/IEC 27002
BS 7799:2002
DTI - CCSC
1992 1993 1994 1995 1996 1997 1998 1999 2000 2001 2002 2005 2007
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
Structure of ISO 27001
21
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
ISO 27001 – Important Sections
22
Section 4: Requirements
Establishing and managing the ISMS
Quality controls
Section 5: Management Responsibility
Management Commitment
Resource Management
Section 6: Internal ISMS Audit
Section 7: Management review of the ISMS
Review input
Review output
Section 8: ISMS Improvement
Continual improvement
Corrective actions
Preventive actions
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
ISO 27001 – Annex A
23
Organization of Annex A
11 control areas
39 control objectives
134 controls
Management controls
Technical controls
Annex A is auditable!
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
ISO 27001 – Annex A (details)
24
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
25 Benefits of ISO 27001 ISMS
What is ISO 27001 ISMS?
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.
Direct Benefits
26
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
Direct benefits
Increased Reliability & Security of
Systems
27
Increased Profits
28
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
Direct benefits
Cost effective & consistent information security
29
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
Direct benefits
Systems Rationalization
30
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
Direct benefits
Implementation of ISO
27001 forces to comply
with all applicable
legislations on the
business
It specially takes into
consideration that the
organization focuses on
legalities involved in its
course of business
specially areas like data
protection & copyright
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
Indirect Benefits
32
Improved management
control
Better human relations
Improved risk
management &
contingency planning
Enhance customer and
trading partners
confidence
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
Indirect benefits
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
Indirect benefits
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
Indirect benefits
Improved risk management & contingency
planning
35
Copyrights (c) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved. What is ISO 27001 ISMS?
37 Thank you!
contact@businessbeam.com