ISO 27001 - Information Management Security

Go down

ISO 27001 - Information Management Security

ISO 27001 is an accredited certification evidencing your commitment to information security.

 

As a legal practice you have a significant amount of valuable information. Clients are increasing interested in how you keep their data secure.  ISO27001 sets out a systematic approach to information security, helping you to demonstrate to your clients that you have a robust and systematic approach to information security. 

To give it it’s full title ISO/IEC 27001:2013 (ISO 27001) is the international standard that describes best practice for an ISMS (information security management system).

 

What is an ISMS?

An ISMS is a systematic approach to managing sensitive company information so that it remains secure. It includes people, processes and IT systems by applying a risk management process.

It can help businesses of any size and in any sector keep information assets secure.

Achieving certification to ISO 27001 demonstrates that your company is following information security best practice, and delivers an independent, expert assessment of whether your data is adequately protected. ISO 27001 is supported by its code of practice for information security management, ISO/IEC 27002:2013.

If you would like to know more about this subject please contact John Edwards on john.edwards@recognisingexcellence.co.uk or 07771988427 and he will alert one of our Specialists to contact you to answer any questions that you have. We can also arrange for an in-house workshop delivered by a fully accredited ISO27001 lead implementer who has extensive experience of working within the legal sector with quality standards, as a consultant and trainer.