Presentation conducted «ISO 27001:2013 – International standard for information security management». Tbilisi, Georgia

Дата публикации: 08.04.2015 10:32:29

March 21, 2015. Presentation conducted «ISO 27001:2013 – International standard for information security management». Tbilisi, Georgia

Main organizer: Georgian Employers' Association (GEA)

Other organizers: „Technical & Management Services LLC“ (TUV SUD representative in Ukraine), Security & IT Management Association (SITMA)

Recently impossible to imagine the modern management and company's business process without adequate operation of information systems and secure workflow. The best international practices in the field of information security management is the implementation of international standard ISO/IEC 27001.

During presentation described information about the international approach to information security, information security risk management process, ISO 27001:2013 requirements, specific recommendations for ISMS implementation process and other.

Presenter - ISO/EC 27001 Lead Auditor, has experience in implementations, audits and certifications in EU, Middle East and CIS.

Audience: managers responsible for the strategic development, managers responsible for business processes implementation, information security managers and specialists, IT managers and specialists.

Agenda

• Introduction. Information security management

• Risk management - key process

• ISO 27001:2013 vs ISO 27001:2005 – new standard requirements

• Specific recommendations for ISMS implementation process

• Typical nonconformities during certification audit