ISO 27001: What Does It Mean & Why is it Important?
We’re proud to announce that TechR2 has received ISO 27001 Certification. We’re very excited about this step forward, but what does it all mean?
The International Organization for Standardization (ISO) provides globally recognized management standards to the electronics recycling industry on a multinational scale. More than just alphabet soup, ISO is an industry-wide policy across information security management systems, or ISMS. The ISO 27001 standard contains 11 domains with which a company must comply to be considered certified:
- Security Policy
- Organization of Information Security
- Asset Management
- Human Resources Security
- Physical and Environmental Security
- Communications and Operations Management
- Access Control
- Information Systems Acquisition
- Information Security Incident Management
- Business Continuity Management
Another aspect of ISO 27001 is the “Plan-Do-Check-Act” model, a process applied to all components of ISMS. The four components ensure a company is committed to the implementation and improvement of information security systems. “ISO 27001 plays a very important role in monitoring, review, maintenance and improvement of your information security management system and will likely give other organizations and customers greater confidence in all the ways they interact with you,” said Sandra Henry-Stocker in a recent IT World article on security management.
Referenced sites: Wikipedia and www.itworld.com, web created by www.iso27001security.com