In a testament to the growing momentum behind ISO 27001, Microsoft Global Foundation Services has chosen to align its information security program with the international standard’s rigorous requirements. As the first major online service provider to earn ISO/IEC 27001:2005 certification, Microsoft has achieved external validation that its approach to managing security risk in a global organization is both comprehensive and effective.
As ISO 27001 continues to demonstrate its value, more and more leading corporations like Microsoft are choosing the international standard as the foundation for their information security programs. ISO 27001 certification not only helps ensure effective security management practices, but also streamlines compliance with multiple regulations by providing one defensible standard of care. In fact, a 2007 survey revealed that 65 percent of organizations complying with PCI were planning to take a more holistic, standards-based approach to compliance by standardizing on ISO 27001.
No comments:
Post a Comment