Presentation is loading. Please wait.

Presentation is loading. Please wait.

The ISO 27000 Standards Get Familiar or Stay Away? PrivaTech Consulting www.privatech.ca Presenter: Fazila Nurani, B.A.Sc., (E.Eng.), LL.B., CIPP/C.

Published bySpencer Shaw Modified over 8 years ago

Similar presentations

Presentation on theme: "The ISO 27000 Standards Get Familiar or Stay Away? PrivaTech Consulting www.privatech.ca Presenter: Fazila Nurani, B.A.Sc., (E.Eng.), LL.B., CIPP/C."— Presentation transcript:

1 The ISO 27000 Standards Get Familiar or Stay Away? PrivaTech Consulting www.privatech.ca Presenter: Fazila Nurani, B.A.Sc., (E.Eng.), LL.B., CIPP/C

2 Code of Practice: BS7799  ISO 17799  ISO 27002 Certification: BS7799-2  ISO 27001 Where did the ISO 27000 Series come from? Privacy and Security Solutions To Protect Your Business…

3 Security Controls in ISO 27002 Privacy and Security Solutions To Protect Your Business… 39 controls - prioritize and implement based on your risk assessment. Deterrent controls Preventative controls Corrective Controls Detective controls

4 Privacy and Security Solutions To Protect Your Business… Implementing an ISMS Security Perimeter Security Policy ISMS Risk Assessment Control Selection Audit Management Support

5 Taking the Temperature… Privacy and Security Solutions To Protect Your Business… A single, coherent framework that enables simultaneous compliance with multiple regulatory requirements. As of March 2008: 3600 corporations world-wide have certified based on the specification for an ISMS (ISO 27001). The future: sector specific versions.

6 Privacy and Security Solutions To Protect Your Business… Questions or for Training Inquiries… Contact: Fazila Nurani 905-886-0751 fnurani@privatech.ca

Download ppt "The ISO 27000 Standards Get Familiar or Stay Away? PrivaTech Consulting www.privatech.ca Presenter: Fazila Nurani, B.A.Sc., (E.Eng.), LL.B., CIPP/C."

Similar presentations

Agenda What is Compliance? Risk and Compliance Management

Agenda What is Compliance? Risk and Compliance Management
Information Privacy and Data Protection Lexpert Seminar David YoungDecember 9, 2013 Breach Prevention – Due Diligence and Risk Reduction.

Information Privacy and Data Protection Lexpert Seminar David YoungDecember 9, 2013 Breach Prevention – Due Diligence and Risk Reduction.
Massachusetts Digital Government Summit October 19, 2009 IT Management Frameworks An Overview of ISO 27001:2005.

Massachusetts Digital Government Summit October 19, 2009 IT Management Frameworks An Overview of ISO 27001:2005.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco Confidential 14854_10_2008_c1 1 Holistic Approach to Information Security Greg Carter, Cisco Security.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco Confidential 14854_10_2008_c1 1 Holistic Approach to Information Security Greg Carter, Cisco Security.
© 2006 Industry Direct Ltd. All Rights Reserved. 1 This entire 21 screen presentation is copyright IDL 2006 all rights reserved & no reproduction or presentation.

© 2006 Industry Direct Ltd. All Rights Reserved. 1 This entire 21 screen presentation is copyright IDL 2006 all rights reserved & no reproduction or presentation.
Security Controls – What Works

Security Controls – What Works
Educore Training & Consultancy. www.educore.com.tr About Us Who we are ? Educore providing services, software based solutions and products for management,

Educore Training & Consultancy. About Us Who we are ? Educore providing services, software based solutions and products for management,
1 Copyright © 2010 M. E. Kabay. All rights reserved. Security Audits, Standards, & Inspections CSH5 Chapter 54 “Security Audits, Standards and Inspections”

1 Copyright © 2010 M. E. Kabay. All rights reserved. Security Audits, Standards, & Inspections CSH5 Chapter 54 “Security Audits, Standards and Inspections”
WHY CHOOSE CEO-PE?  We employ International Association of Privacy Professionals (IAPP) Certified and Health Insurance Portability & Accountability Act.

WHY CHOOSE CEO-PE?  We employ International Association of Privacy Professionals (IAPP) Certified and Health Insurance Portability & Accountability Act.
ISO 17799&ITS APPLICATION Prepared by Çağatay Boztürk 14.06.2005.

ISO 17799&ITS APPLICATION Prepared by Çağatay Boztürk
© 2006 IBM Corporation Introduction to z/OS Security Lesson 9: Standards and Policies.

© 2006 IBM Corporation Introduction to z/OS Security Lesson 9: Standards and Policies.
Information Security Governance and Risk Chapter 2 Part 1 Pages 21 to 69.

Information Security Governance and Risk Chapter 2 Part 1 Pages 21 to 69.
First Practice - Information Security Management System Implementation and ISO 27001 Certification.

First Practice - Information Security Management System Implementation and ISO Certification.
Every Solution Consultancy ISO 9001:2008 Certification IMPLEMENTATION Web:

Every Solution Consultancy ISO 9001:2008 Certification IMPLEMENTATION Web:
What is an EMS? A framework that helps a company achieve its environmental goals through consistent control of its operations. Plan Do Check Act.

What is an EMS? A framework that helps a company achieve its environmental goals through consistent control of its operations. Plan Do Check Act.
Consultancy.

Consultancy.
SecureAware Building an Information Security Management System.

SecureAware Building an Information Security Management System.
Evolving IT Framework Standards (Compliance and IT)

Evolving IT Framework Standards (Compliance and IT)
GRC - Governance, Risk MANAGEMENT, and Compliance

GRC - Governance, Risk MANAGEMENT, and Compliance
IT Pro Day Auditing in SQL Server 2012 Charley Hanania Principal Consultant, QS2 AG – Quality Software Solutions www.qs2.ch.

IT Pro Day Auditing in SQL Server 2012 Charley Hanania Principal Consultant, QS2 AG – Quality Software Solutions

Similar presentations

Ads by Google