New research into cybersecurity by ABI Research and the International Telecommunication Union (ITU) has ranked the United States’ commitment to cybersecurity the greatest in the world.
The Global Cybersecurity Index (GCI) analyses “the cybersecurity engagement of sovereign nation states” and ranks countries according to their commitment to cybersecurity. The metric used to measure this commitment is based on five indicators and their sub-groups: legal, technical, organizational, capacity building and cooperation.
Before waves of self-congratulation ripple around the nation, however, it should be noted that the “GCI does not seek to determine the efficacy or success of a particular measure, but simply the existence of national structures in place to implement and promote cybersecurity.” The ranking is more an indication of intent than actual ability.
Considering the 783 data breach incidents the US saw last year, the absence of a federal law to govern cyber security, and the notoriously slow adoption of chip and pin payment technology in the retail sector, it’s no surprise that there’s more work to be done.
US organizations that are serious about cybersecurity can significantly improve their capabilities by implementing an information security management system (ISMS), as set out in the international best-practice standard, ISO 27001.
An ISMS allows organizations of all types to employ a risk-based approach to information security that encompasses people, processes, and technology. As part of an overall management system, an ISMS functions to protect and monitor information and improve how security is handled within an organization.
Certification to ISO 27001 is a globally acknowledged mark of compliance, and provides huge business benefits. According to the latest ISO survey, 36% more organizations were certified to ISO 27001 in 2013 than in 2012.
ISO 27001 Packaged Solutions
Having led hundreds of ISO 27001 certifications around the world, IT Governance has now developed a series of fixed-price ISO 27001 Packaged Solutions that allow organizations of all sizes, sectors, and locations to use its expertise to implement the Standard at a speed and for a budget appropriate to their individual needs.
For a simple overview of the packages, and to see which one will suit your organization’s needs, please click here for more information >>