Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 552
  • Last Modified:

Security Policies for ISO 27001 Security Standard

Hi

I have been asked to draft IT security policies for our company in order to acquire the ISO 27001 security standard.

To be honest I don't really know where to start.

Any pointers to online resources or policy templates would be welcome, but ultimately I like to understand what principles should be adopted in  practice.

Any help would be greatly appreciated

thanks
capt.
0
captain
Asked:
captain
3 Solutions
 
hesCommented:
0
 
dhsindy SparrowRetired considering supplemental income.Commented:
0
 
dhsindy SparrowRetired considering supplemental income.Commented:
The hard part is analyzing the organization and all of its processes to determine what is needed.
0
Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

 
captainAuthor Commented:
I figured. I will need to check the links out on Monday when I am back at work.

Thanks so far, I am sure there will be more. :)
0
 
COBOLdinosaurCommented:
One of the big parts of ISO certification is the definition and implementation of audit procedures to insure that there are mechanism in place to enforce policy compliance within processes.

The process need to have a self-checking, self-correcting mechanism.

Cd&
0
 
captainAuthor Commented:
Thanks all!

We are now compiling a policy from the resource material provided
0

Featured Post

Cyber Threats to Small Businesses (Part 2)

The evolving cybersecurity landscape presents SMBs with a host of new threats to their clients, their data, and their bottom line. In part 2 of this blog series, learn three quick processes Webroot’s CISO, Gary Hayslip, recommends to help small businesses beat modern threats.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now