ISO 27001: 2013 – Information Security Management Systems

Many organizations take information security measures or controls to protect their information, information assets and business processes. However, without a formally specified information security management system (ISMS), these controls are inclined towards disorganization and disconnection, since they are mostly implemented as ad hoc temporary solutions to certain situations. The real challenge for small businesses and larger organizations is not to go beyond case by case solutions to information security vulnerabilities and incidents, but to engage in a holistic approach, which is where ISO/IEC 27001:20013 comes in.

Read more…

The Importance of Information Security Nowadays

Nowadays living without access to the information of interest at any time, any place through countless types of devices has become unimaginable. However, its security has become more important than information access itself. In fact today information security rules the world…! Why?

Read more…

ISO 22301 – Business Continuity Management Systems

Organizations of all sizes and types should now engage in a comprehensive and systematic process of prevention, protection, preparedness, mitigation, response for business continuity and recovery. The ability of an organization to recover from a disaster is directly related to the degree of business continuity planning that has taken place BEFORE the disaster. Studies show that two out of five businesses that experience a disaster will go out of business within five years of the event.

Read more…

Creating an effective Business Continuity plan

Protect, reduce, prepare, respond, and recover. Speaking in terms of business, these are the five words, each representing an action, that probably best describe Business Continuity in brief.

Read more…

ISO/IEC 20000-1: 2011 – Service Management System Requirements

As ITIL® qualifications were only available for individuals, it was impossible for an IT organization to prove that it was working along the ITIL recommendations. In order to fill this gap, two organizations itSMF (The IT Service Management Forum) and BSI (British Standards Institution), initiated the ISO/IEC 20000:2011 standard.

Read more…

ISO 9001: 2015 – Quality Management Systems Requirements

Quality management is the act of managing all activities and functions needed to maintain a consistent level of excellence in an organization, product or service. Quality is an essential factor that differentiates an organization from its competitors. Undertaking quality initiatives will lead to superior products or services which meet and exceed customer expectations, increase revenues and productivity for the organization.

Read more…

The Transition to ISO 9001: 2015

The Quality Management System standard has gone through some significant changes, The new version of ISO 9001:2008 will be released in September 2015. The latest draft of the standard, ISO/DIS 9001 (Draft International Standard), was moved to the final stage of the review after it received around90% approval votes. During the ISO/FDIS 9001 (Final Draft International Standard), the subcommittee goes through the public comments given in the previous stage of the development, and incorporate those relevant to the aim of the final draft. Those changes…

Read more…