ISO 27000 - A Basis for Business Security Strategies
Security Strategy and Policy Reality Checker, July 2011
- Presentation 1: Allen & Overy (Presentation)
- Presentation 2: Bupa (Presentation)
- ISO 27000 - A Basis for Business Security Strategies (Report)
- ISO 27000 - A Basis for Business Security Strategies (Executive Summary)
- ISO 27000 - A Basis for Business Security Strategies (Top Tips)
The recent tISS Security Strategy and Policy Reality Checker revealed that the majority of Forum members use the ISO 27000 series of Information Security Standards as a basis or guideline for their approach to corporate security.
Though relatively few responding organisations were ISO 27000 certified, many were currently either working towards this (over 60%), or following the best practice offered (over 70%). Additionally, there is considerable interest in how businesses are managing to 'push', or enforce, compliance across suppliers and partners.
This workshop will enable members to share their adoption - and adaptation - journeys and experiences; find out how what, why and how modifications have been made; and justify why certification is the right route for some, impractical for others.
Note: References to ISO 27000 are intended to cover the series of information security standards.
Allen & Overy
Who should attend
- Identifying and prioritising elements of ISO 27000 for your business. How do you establish the case for return on investment?
- Tailoring to align with business needs and requirements
- To certify, or adopt as best practice
- Successful advocation of ISO 27000 across partners and suppliers
- Maintaining compliance
"Just wanted to say thanks; another great day where I have come out with more knowledge than I entered with"
"Many thanks; [the event was] very good and beneficial"
"I have never not found a day interesting"
"The Corporate IT Forum is a fantastic level check, free of vendor sell and consultancy hype. I like the open sharing of experience…"
"We get valuable knowledge and experience from members of The Corporate IT Forum. This helps us to make better and informed decisions to reach our business goals…"
"The knowledge from other people on what they are doing/have done is invaluable to my team"
"The workshop validated the marketplace for supplier apps; participants were of a uniformly high standard; personally, I value highly the ethos of the Forum in the fact that it is supplier independent"