ISO 27001 is catching on in the US. According to the latest study by the International Organization for Standardization, there was a 91% increase year-on-year in the number of US organizations with an ISO 27001 qualification.
The Standard describes best practice for an information security management system (ISMS) and has been adopted by organizations across the globe. Achieving accredited certification to ISO 27001 demonstrates to existing and potential customers that an organization has defined and put in place best-practice information security processes.
Benefits of ISO 27001
The growing popularity of ISO 27001 shows that more organizations are realizing the importance of implementing an ISMS that protects their business – a need that is apparent with the recent rise in cyber attacks and data breaches.
The increasing implementation of the Standard is also because it helps organizations comply with business, legal, contractual, and regulatory requirements. We’ve mentioned how ISO 27001 can help you comply with the New York Department of Financial Services Cybersecurity Requirements, and it can also be used to aid compliance with the Health Insurance Portability and Accountability Act (HIPAA), the Federal Risk and Authorization Management Program (FedRAMP), and the Sarbanes–Oxley Act.
Our updated ISO27001 Certified ISMS Foundation Online and ISO27001 Certified ISMS Lead Implementer Online training courses now include direct examples of how to apply controls to comply with legislation.
These courses were developed by ISO 27001 experts Alan Calder and Steve Watkins, and the programs draw on their industry-leading implementation guide, IT Governance – An International Guide to Data Security and ISO27001/ISO27002.
Our team led the world’s first ISO 27001 certification project, and since then we’ve helped more than 400 clients achieve compliance with the Standard.