Show me desktop version
CALL US +1 (646) 759 9933

gap-tool-icon1

Return on Security Investment Calculator
Did you ever face a situation where you were told that your security measures were too expensive? Or where you found it very difficult to explain to your management what the consequences could be if an incident occurred? Proving that it is worth investing in security is tough, but our Return on Security Investment (ROSI) calculator can help you. It’s completely free.

Diagram of ISO 27001:2013 Implementation

Diagram that shows the ISO 27001 implementation process, from the beginning of the project to the certification.

DOWNLOAD

What is ISO 27001?

ISO 27001 is the international standard by ISO (the International Organization for Standardization) for Information Security Management Systems (ISMS). The most recent update of the standard came in 2013, and is referred to as ISO 27001:2013.

ISO-22301-Where-does-it-fit-EN2-170x124

 

What is ISO 22301?

The full name for this standard is ISO 22301:2012 Societal security – Business continuity management systems – Requirements. This standard is written by leading business continuity experts and provides the best framework for managing business continuity in an organization.

What’s your first step?

Before beginning your implementation of ISO 27001 or ISO 22301, your first step is recognizing your current issues and where you can improve your information security and/or business continuity management. At that point, you can determine which stage of the process you are in. Maybe you’re just getting started, and trying to decide if ISO 27001 or ISO 22301 can help you solve issues specific to your organization.

Or, perhaps you’re further along in the process. By starting on Step 1, you’ll have the opportunity to define your situation so you know what to do next.

Find more information and support in our ISO 27001 & ISO 22301 Blog

How to gain employee buy-in when implementing cybersecurity according to ISO 27001

In the majority of organizations, change is embraced by senior management, but feared by employees. In the case of implementing ISO 27001, a committed senior management team (SMT) can understand clearly the benefits that an Information Security Management System (ISMS) will bring, such as decreased risk of business disruption, enhanced ...Read more

Which security clauses to use for supplier agreements?

Running a business on your own these days is practically impossible. Maintaining high levels of performance in every aspect of your business to stay competitive means draining precious resources that would be better invested in business growth and diversification. Thus, using suppliers becomes an attractive alternative. But, while suppliers are ...Read more

Using ISO 22301 business continuity practices to support mass public events

Managing public events with hundreds or thousands of people is a challenge, as disruptions of these events may result in huge material losses or even loss of life. We face the classic situation where disruptions may lead to unforeseeable consequences. As such, a business continuity approach based on ISO 22301 appears ...Read more

Defining the ISMS scope if the servers are in the cloud

In the article How to define the ISMS scope we show that scope definition of an Information Security Management System (ISMS) requires clear understanding about what to protect to minimize risks of information compromise, and servers implemented in cloud environments are an extra challenge in this critical step of the ...Read more

Case study: ISO 27001 implementation in an IT system integrator company

For any major change in our lives, whether professional or personal, there are questions that come up before taking the first step. Here are just a few of the questions that you may face before making the decision to implement the ISO 27001 standard: Why do we need the certification? Where ...Read more

How ISO 27001 can help suppliers comply with U.S. DFARS 7012

DFARS 7012 is an example of how customers’ concerns about protecting their information in the custody of suppliers and outsourced services has led to the establishment of ever more complex security requirements for those who wish to work with them. And, this increase in customer compliance demands has also increased ...Read more

Free ISO 27001 / ISO 22301 Consultation

We have ISO 27001 & ISO 22301 consultants ready to talk to you about where your organization is and what actions to take next. We know how complicated things can get, and we’re here to provide guidance you can rely on.

OUR PARTNERS


  • Exemplar Global (formerly RABQSA) is leading international
    authority in certification of training providers.

  • ITIL® is a registered trade mark of AXELOS Limited.
    Used under licence of AXELOS Limited. All rights reserved.

  • DNV GL Business Assurance is one of the leading providers of
    accredited management systems certification.
Request callback
Request callback

Or call us directly

International calls
+1 (646) 759 9933