Axenic is proud to announce that all of its consultants are now certified as Information Security Management System (ISMS) Lead Auditors (ISO/IEC 27001:2013) by BSI (British Standards Institution).
In my last article I spoke at some length about not just why a Security Policy is important, what its content should be, but also how it should be written. There is no default setting for Security Policy. Remember, what works for one organisation probably won’t work for another.
An Information Security Management System (ISMS) is a security framework comprised of policies, processes and the management of technologies to address an organisation’s information security requirements.