ฝัง
- เผยแพร่เมื่อ 6 มิ.ย. 2024
- 👉 ISO/IEC 27001 is the world's best-known standard for information security management systems (ISMS). It defines requirements an ISMS must meet. In this video, we cover the mian questions you have about the ISO/IEC 27001:2022 standard.
The ISO/IEC 27001 standard provides companies of any size and from all sectors of activity with guidance for establishing, implementing, maintaining and continually improving an information security management system.
👉 Stay updated on this standard and related topics: go.iso.org/27001-yt
Conformity with ISO/IEC 27001 means that an organization or business has put in place a system to manage risks related to the security of data owned or handled by the company, and that this system respects all the best practices and principles enshrined in this International Standard.
👉 Why is ISO/IEC 27001 important?
With cyber-crime on the rise and new threats constantly emerging, it can seem difficult or even impossible to manage cyber-risks. ISO/IEC 27001 helps organizations become risk-aware and proactively identify and address weaknesses.
ISO/IEC 27001 promotes a holistic approach to information security: vetting people, policies and technology. An information security management system implemented according to this standard is a tool for risk management, cyber-resilience and operational excellence.
👉 Can you explain who needs ISO/IEC 27001:2022?
Nowadays, data theft, cybercrime and liability for privacy leaks are risks that all organizations need to factor in. Any business needs to think strategically about its information security needs, and how they relate to its own objectives, processes, size and structure. The ISO/IEC 27001 standard enables organizations to establish an information security management system and apply a risk management process that is adapted to their size and needs, and scale it as necessary as these factors evolve.
While information technology (IT) is the industry with the largest number of ISO/IEC 27001- certified enterprises (almost a fifth of all valid certificates to ISO/IEC 27001 as per the ISO Survey 2021), the benefits of this standard have convinced companies across all economic sectors (all kinds of services and manufacturing as well as the primary sector; private, public and non-profit organizations).
Companies that adopt the holistic approach described in ISO/IEC 27001 will make sure information security is built into organizational processes, information systems and management controls. They gain efficiency and often emerge as leaders within their industries.
👉 How will ISO/IEC 27001 benefit my organization?
Implementing the information security framework specified in the ISO/IEC 27001 standard helps you:
1) Reduce your vulnerability to the growing threat of cyber-attacks
2) Respond to evolving security risks
3) Ensure that assets such as financial statements, intellectual property, employee data and information entrusted by third parties remain undamaged, confidential, and available as needed
4) Provide a centrally managed framework that secures all information in one place
5) Prepare people, processes and technology throughout your organization to face technology-based risks and other threats
6) Secure information in all forms, including paper-based, cloud-based and digital data
7) Save money by increasing efficiency and reducing expenses for ineffective defence technology
👉 What is ISO/IEC certification?
Certification to ISO/IEC 27001 is one way to demonstrate to stakeholders and customers that you are committed and able to manage information securely and safely. Holding a certificate issued by an accreditation body may bring an additional layer of confidence, as an accreditation body has provided independent confirmation of the certification body’s competence. If you wish to use a logo to demonstrate certification, contact the certification body that issued the certificate. As in other contexts, standards should always be referred to with their full reference, for example “certified to ISO/IEC 27001:2022” (not just “certified to ISO 27001”).
0:00 Introduction to ISO/IEC 27001 - Information Security Management Systems
0:14 What is ISO/IEC 27001?
2:25 Who needs ISO/IEC 27001 standard?
2:48 Why is ISO/IEC 27001 so important?
3:10 What are the three principles of ISO/IEC 27001?
3:37 What are the five basic security principles of ISO/IEC 27001 standard?
3:59 How will ISO/IEC 27001 benefit my organization?
4:20 Is ISO/IEC 27001 a standard or a framework?
4:39 Do I need ISO/IEC 27001?
5:01 Does ISO/IEC 27001 cover GDPR?
5:19 What is the difference between ISO/IEC 27001 and ISO 9001?
7:25 What is ISO/IEC 27001 certification?
7:44 How to get ISO/IEC 27001 certification?
More information on ISO 27001 👉 go.iso.org/27001-yt
#ISO #iso27001
![[UNCUT]"เศรษฐา" โดนบีบให้ลาออก เผยดีลลับ "ทักษิณ" ต้องต่อโปร ไม่งั้นเจอจุดจบ! I คนดังนั่งเคลียร์](http://i.ytimg.com/vi/XlH3k81dxmE/mqdefault.jpg)
👉 Stay updated on this standard and related topics: go.iso.org/27001-yt
Will you provide more infos about ISO/IEC 27001? I feel like this video barely scraped the surface of ISO/IEC 27001s capabilitys. ISO/IEC 27001 is a complex structure. I'd like to watch a in depth video about ISO/IEC 27001, that really dives into ISO/IEC 27001s benefits.
Respect for saying ISO/IEC so many times, lol
Thank you! 😉
Amazing gift of teaching
Thanks a lot!
Thank you. Do you need to be compliant to all Annex A items to be certified?
thanks
You're welcome!
I didnt get the name of this specific ISO. Could you please repeat the name?
ISO/IEC 27001
Now that's what I call customer service!@@iso
I developed a method based on the Problem Tree with the initial objective of incorporating the habits of ISO 9001 into the creation of my company. However, I realized that it can also be very useful for training my wife.
I would like to get your opinion on this approach and whether you believe it is an effective way to study the standard before starting a more official course to become an internal auditor.
The PDF consists of 32 pages, and I can send it to you via email solely for the purpose of obtaining feedback.
Awesome Video! Can you please do one about ISO 45001 aswell?
Thank you! Yes, ISO 45001 is in the pipeline.
🙌
Damn the size of those monitors.
👍😂
Very good please hindi language ❤
Thank you. Do you mean Hindi subtitles?
Best ISO 27001 video so far
Thank you! Glad you like it!