ISO Training

ISO 27001:2013 - Information Security Management System

An Information Security Management System (ISMS) is a management system based on a systematic business risk approach to establish, implement, operate, monitor, review, maintain, and improve information security. It is an organizational approach to establishing information security. ISO/IEC 27001 (BS 7799) is a standard for information security that focuses on an organization's ISMS