The most effective way to manage risks to information security is to implement an Information Security Management system in line with best practice and the recognised standard for best practice is ISO 27001 (BS7799).
To demonstrate that you are meeting best practice, a company needs to have its achievement independently validated - this process is called certification.
No comments:
Post a Comment