ISO 27001 FOR SMEs
so here is the meeting announcement for the month of January from the ITSME Association to be held on 29, 2009 at 5.00 pm at Hotel Savera.
The agenda is given below:
5.00 - 5.30 Networking and High Tea
5.30 - 5.35 Welcome address – ITSME President
5.35 - 7.45 ISO 27001 FOR SMEs by Mr. Govind Srinivasan
7.45 – 7.55 Q & A
7.55 - 8.00 Vote of Thanks
5.00 - 5.30 Networking and High Tea
5.30 - 5.35 Welcome address – ITSME President
5.35 - 7.45 ISO 27001 FOR SMEs by Mr. Govind Srinivasan
7.45 – 7.55 Q & A
7.55 - 8.00 Vote of Thanks
Background to this session:
About 450 companies in India, mostly IT Services and BPO organizations, have implemented the ISO 27001 (Information Security Management System) Standard. Information Security has become the part of business process today, in the light of growing uncertainties that come out of vulnerabilities and threats, human behaviour and technology being the prime factors. The implementation of ISO 27001 Standard can prove to be a good exercise for integrating different functions and domains in an organization by design. Besides, other possible business requirements like implementing Data Protection Act can also be considered as plugs-in. For the IT SME companies, ISO 27001 can act as yet another pull factor for garnering business from larger structured customer-organizations. It is believed that the RFP responses from IT vendors get past the initial screening successfully, by demonstrating Information Security compliance. Compliance to ISO 27001 is also considered as a due diligence parameter for later-day merger or acquisition strategies of IT SME companies.Implementing this standard brings a formal risk-based approach to managing Information assets that can be classified into People, Process, Technology and Infrastructure. The standard covers as diverse divisions in an organization like Human Resources, Physical and Environmental Management, Information Technology, Incident Management, Business Continuity and Legal Compliance. Early implementation at the start-up stage helps raising the maturity of an organization to manage Security Incidents.
About 450 companies in India, mostly IT Services and BPO organizations, have implemented the ISO 27001 (Information Security Management System) Standard. Information Security has become the part of business process today, in the light of growing uncertainties that come out of vulnerabilities and threats, human behaviour and technology being the prime factors. The implementation of ISO 27001 Standard can prove to be a good exercise for integrating different functions and domains in an organization by design. Besides, other possible business requirements like implementing Data Protection Act can also be considered as plugs-in. For the IT SME companies, ISO 27001 can act as yet another pull factor for garnering business from larger structured customer-organizations. It is believed that the RFP responses from IT vendors get past the initial screening successfully, by demonstrating Information Security compliance. Compliance to ISO 27001 is also considered as a due diligence parameter for later-day merger or acquisition strategies of IT SME companies.Implementing this standard brings a formal risk-based approach to managing Information assets that can be classified into People, Process, Technology and Infrastructure. The standard covers as diverse divisions in an organization like Human Resources, Physical and Environmental Management, Information Technology, Incident Management, Business Continuity and Legal Compliance. Early implementation at the start-up stage helps raising the maturity of an organization to manage Security Incidents.
Though this is a member only event, you can register by contacting the ITSME association.
See you there.
Sarada
Comments