IU-ACM present’s Developing Information Security Framework using ISO/IEC 27001:2005 standard.
This seminar will be useful for students interested in the field of security, IT managers & business leaders. The purpose of this event is for laying the proper foundation of knowledge and skills in the field of information security.
ISO/IEC 27001:2005, usually referred to just as ISO 27001, is the best practice specification that helps businesses and organizations throughout the world to develop a best-in-class Information Security Management System (ISMS). The Standard was published jointly by the International Security Office (ISO) and the International Electrotechnical Commission (IEC). The British standard BS7799-2 was the forerunner for ISO 27001.
In this modern age, information and information systems are vital to all organizations. ISO 27001 sets out specific requirements, all of which must be followed, and against which an organizations. Information Security Management System (ISMS) can be audited and certified.
ISO 27001 is the first in a family of international information security standards that:
Will underpin and protect IT worldwide over the next decade
ISO 27001 is designed to harmonise with ISO 9001:2008, ISO 14001:2004, ISO 20000 and others for effective management system integration
Implements the Plan-Do-Check-Act (PDCA) model, and
Reflects the principles of the 2002 OECD guidance on the security of information systems and networks.
Guest Speaker: Syed Faraz Javed
(Lead Auditor for ISO/IEC 27001:2005,
Certified Information Security Manager)