Showing posts with label CISO. Show all posts
Showing posts with label CISO. Show all posts

Monday, 16 June 2014

4 Vital reasons why you need the ISO27001 standard

Information security management systems provide the basis for policies and procedures covering all legal, physical and technical aspects of an organisations information security. Information is an extremely valuable asset. It is therefore crucial that an organization design implement and maintain a coherent set of policies, processes and systems to manage risks to its information assets.

ISO27001 is the internationally recognised standard for information security management systems. It’s one of the most highly regarded security specifications and is considered the best practice for IT security management. But why should you comply with it?

1. Control risk within the organisation

It’s hard to quantify your organisations security risk and even harder to validate it. Frank Ohlhorst, a regular contributor to TechRepublic describes how, “…the primary risk of risk management comes in the form of bad data, or more specifically, data resulting from incorrect intelligence.” Bad data can lead to bad decisions. But ‘bad’ doesn’t even begin to describe the consequences that these decisions can have on your organisation.

The ISO27001 standard ensures that you can identify and manage risk in a structured, methodical and ultimately effective manner.

'"Keep your information secure with ISO27001"
Image courtesy of  jscreationzs /

2. Avoid security catastrophes

According to the Online Trust Alliance, over 740 million online records were exposed in 2013, identifying it as the worst year ever for data breaches. Just a quick glance at this infographic from Information is Beautiful quickly illustrates the explosion in data breaches over the last decade. And whilst the proliferation of electronically stored data has a part to play in this, it is abundantly clear that even the world’s largest (and most technologically able) companies aren’t doing enough.

Information security breaches can shatter customer trust and devalue your business. ISO27001 operation helps your organisation to prevent incidents occurring as well as providing strategies to manage incidents if they do occur.

3. Get the competitive edge

You’re always going to have to compete with other organisations for business. Get the edge over them by proving that you comply with ISO27001; you’ll differentiate yourself from the competition. Prospective clients and customers will recognise this and often choose a supplier that holds an ISO27001 certificate over one that doesn’t.  

4. Grow your business

ISO27001 compliant recommends organisations maintain supply chain relationships with equally compliant suppliers. If you want to create and build long-lasting trade relationships with larger ISO27001 certified enterprises, you’ll need to comply with the standard too.  

"A webinar from Vigilant Software CEO - Alan Calder"

Get ISO27001 Certified

It takes skilled and experienced professionals to ensure that organisations meet the demanding ISO27001 requirements. Demonstrate leadership in your field by learning to plan, implement and monitor an ISO27001 standard, within your organisation or for others, with the ISO27001 Lead Implementer certification

Having an ISO27001 certified implementer within your organisation is a brilliant way to achieve that ISO27001 standard and ensure your ISMS remains secure.

If you’re already an experienced auditor, now might be a great time to make the leap and get the ISO27001 Lead Auditor cert . In only 3 days, you’ll gain the skills needed to plan and perform audits in compliance with the ISO27001 standard.

Thursday, 28 February 2013

Video: C|CISO by EC-Council


What is a CISO?

CISO stands for Chief Information Security Officer and is a title given to those responsible for the IT security and are at the highest level of that field.

EC-Council released its C|CISO accreditation to develop skills in executing an information security management strategy in alignment with organisational goals.
CISO - Certified Chief Information Security Officer

“CISO equips information security leaders with tools to protect against security breaches by actively improving the current information technology security solutions, enforcing regulatory requirements and aligning IS with the strategic needs and goals of their business. This skill set enables the CISO to be the best guardian of their organization’s digital assets.”

Benefits of becoming a certified CISO

Getting a CISO certification will make you stand out from others in the competitive ranks of senior IS Professionals. CISO provides your employers with the assurance that as a CISO certified executive leader, you possess the proven skills, knowledge and experience to plan and oversee information security for the whole company.

CISO is regarded as the highest title within the information security profession.

Jay Bavisi, the President of EC-Council, talks about the CISO credential and why it's becoming a vital certification for organisations to have in order to protect their systems. Watch below.

To embed this video copy the text in the box below:

“CISO is a unique designation that has been designed in cooperation with industry leaders to identify a solid blend of functional and executive IT job roles and skill requirements.” Jay Bavisi, President of EC-Council.

About the Author:
Sarah writes for Firebrand Training on a number of IT related topics. This includes exams, training, certification trends, project management, certification, careers advice and the industry itself. Sarah has 11 years of experience in the IT industry.