It won’t have escaped your attention that the United States has a new president-elect. While Donald Trump doesn’t seem to have formulated a concrete policy on what he calls “the cyber” yet (according to the Information Technology & Innovation Foundation’s analysis of the president-elect’s pronouncements, “there were few articulated policy positions” on technology), it’s worth remembering that in unstable times of political change cybersecurity is more important than ever.
The US has come under sustained cyber attack over the last few years, with incidents like the massive data breach at the Office of Personnel Management (OPM) deservedly receiving considerable news coverage.
In the wake of such incidents, Mr. Trump has stated an intention to tighten the country’s cyber defenses, including developing “offensive cyber capabilities” to wage cyber warfare on state-sponsored cyber attackers.
Best-practice cyber defenses
Organizations that are concerned about their cybersecurity should turn to best practice, as set out in the international standard for information security management ISO 27001.
With 1,247 accredited certificates issued in the US in 2015, ISO 27001 presents a comprehensive and logical approach to developing, implementing, and managing an ISMS (information security management system), and provides associated guidance for conducting risk assessments and applying the necessary risk treatments.
The additional external validation demonstrated by accredited certification to ISO 27001 will improve an organization’s cybersecurity posture while providing a higher level of confidence in customers and stakeholders, which is essential for securing certain global and government contracts.
IT Governance has created four ISO 27001 implementation solutions to give organizations online access to world-class expertise. Each fixed-priced solution is a combination of products and services that will enable you to implement ISO 27001 at a speed and budget appropriate to your individual needs.