Information security has been recognized as an important business process that, if not managed properly and efficiently, can affect an organization’s ability to deliver its products and services to customers. Equally important, the lack of information security can affect an organization’s revenue. The average damage to each individual data security breach is estimated at between 4-8.5 million USD. Therefore, special skills and practical knowledge are required to assess an organization's ability to manage all aspects of information security.
At the webinar, special emphasis will be placed on the application of a series of standards in the field of information technology and the requirements of the information security management system (ISMS) in the context of overall business risks in the organization.
ISO/IEC 27001:2013 (SRPS ISO/IEC 27001:2014) is the leading international standard for information security management. It is focused on protecting the confidentiality, integrity and availability of information. Organizations that apply this standard can be assured that they have covered all aspects of information security in their business, regardless of whether they are certified or not.