Join our Q&A with QSAs - Let's talk PCI DSS

Event Detail

URM > Events > Event Detail

ISO 27001 Webinar, September, Online Webinar

Date 23 September
Time 11:00 am
Location Online Webinar, UK

ISO 27001 is the International Standard for information security management and provides a ‘best practice’ framework for establishing an information security management system (ISMS). The Standard is risk-based, and includes the requirements for assessing and treating risks tailored to the needs of your organisation. Annex A of ISO 27001 provides a comprehensive set of 114 controls for you to consider when treating your risks.  All of the requirements set out in ISO 27001 are generic and are intended to be applicable to any organisation, regardless of size and industry sector. With its universal appeal, it is not surprising that ISO 27001 is one of the most adopted international standards and one of the fastest-growing.

Now more than ever, organisations are having to review and re-evaluate their information security requirements, whether in response to external factors (the current COVID-19 pandemic, regulation, legislation, or new client contractual requirements) or to take advantage of new technologies (such as the cloud) or new working practices (more employees working remotely).   ISO 27001 can be considered an ‘umbrella standard’ and with its focus on continual improvement, implementing the Standard will enable your organisation to identify and respond to information security requirements as they emerge, change and evolve.

URM’s ISO 27001 webinar will provide real insight as to how organisations can, and have, used the ISO 27001 Standard to identify and respond to the ever-changing information security risks which all businesses face.

The first in this new series of webinars from URM will help you understand how to implement ISO 27001.  Effectively, ISO 27001 provides a complete approach to information security – a set of policies, procedures, practices, and controls to protect the confidentiality, integrity and availability of your information assets.

So what is the agenda:

  • First, we will take a look at the structure and components of ISO 27001
    and what you need to do to implement an ISMS

  • Next, we will examine what is meant by ‘risk-based’ along with the risk
    management process of ISO 27001

  • We will then turn to the Annex A controls to understand the groups or
    domains and what they address

  • Finally, we will review why ISO 27001 is so relevant today