Understanding the information security better: ISO 27001

1
Understanding the information security better
ISO 27001
2

• The present day organizations and companies in
  Qatar rely heavily on information security
  industry for the management of their businesses
  and other main applications like financial
  databases and so on. But that is not the extent
  to which the IT industry works.
• No. the IT industry, in addition to providing the
  means for enhancing the company performance, the
  IT also takes care of the security and the
  integrity of the company. This service is
  considered life-saving on many accounts as the
  data and information is extremely crucial to any
  company even outside the business fields in
  Qatar.

3
Information security

• If you have a business company in Qatar then
  youre probably aware of the fact that the
  correct information in the hands of the right,
  authorized person can make the stunning
  difference in everything be it success, profit,
  loss, failure.
• There are 3 major aspects to any information
  security company these are the confidentiality,
  integrity and availability. Once youve done away
  with the information security basics, now youve
  got to go through the undeniable struggle of
  managing it and keeping it up to date so that it
  may function properly and provide the best
  results possible.

4
Information security

• The information security management system (ISMS)
  deals with the overall management of the client
  companys aspects based on the risk factors and
  other such related features and one of the ISMS
  is known as ISO 27001.

5
The notorious ISMS

• The ISO 27001, in Qatar, is a quite popular
  international level standard focusing on the
  information security management and while it has
  faced rejection from over 12 thousand
  organizations but still being used by more than
  thousands of people worldwide and thus it can be
  assumed, based on its popularity and usage, that
  it is indeed a very convenient and highly secure
  ISMS.
• The ISO 27001, in Qatar, and practically
  everywhere in the world as it was developed
  keeping in mind the overall problems and not
  specific countries or areas, has two parts the
  ISO/IEC 27001 and the ISO/IEC 27002.

6
The ISO/IEC 27001

• It is the basic foundation which is used in the
  certification of the ISMS and it is something
  which is related to the management programs,
  usually for the security of the company and the
  data management of the company and the risk
  management, which is generally also the security
  of the company.
• It is a very vast ISM as it has very detailed
  explanations and rules addressing almost all the
  crucial factors for the information security. It
  has 11 security domains which deal with the
  safety and integrity, 39 security objectives and
  133 controls making it a very well balanced
  security system.

7
The ISO/IEC 27002

• This can be identified as the code which is used
  in the basic practicing of the security
  management.
• This is solely a practice engine which is used to
  make individuals reach perfection in the coding
  for the information security management and
  unlike the ISO 27001, in Qatar it is not used
  for administering any certification what so ever.

8

• For More InformationClick Here

?ISO 27001 Qatar