Cyberattacks, data breaches, phishing, and identity theft. Topics we regularly hear about in the media. Unfortunately, these types of incidents are becoming commonplace. This means that strong cybersecurity within your organisation is no luxury.
In this article, we provide some tips for using standards to keep your company’s data, and that of your customers, safe.
No organisation is immune to cyberattacks or data breaches. As well as suffering serious financial damage, organisations that fall victim to cyberattacks often lose customer trust.
An information security management system (ISMS) helps you mitigate the risks of a cyberattack.
ISO/IEC 27001: the international standard for information security
The ISO/IEC 27001 standard guides you in establishing, evaluating and improving an effective ISMS. Thanks to this standard, you protect the confidentiality, availability and integrity of all data within your organisation.
ISO/IEC 15408: evaluation of IT security.
Cyber threats are real, and uncertainty among businesses is high. Having the confidence and assurance that our systems are secure has become a basic requirement. ISO/IEC 15408 helps to restore that confidence. The standard establishes evaluation criteria for IT security.
ISO/IEC 18045: the evaluation method
This ISO/IEC 18045 standard defines the methodology for evaluating IT security. ISO/IEC 15408 and ISO/IEC 18045 work together, like the pedals of a bicycle, to ensure IT security. Combining the two standards is the best way to test and evaluate the security of products and systems.
The explosion of cybersecurity concerns has led to new, upcoming legislation in the European Union to strengthen cybersecurity systems. This new EU cybersecurity regulation will provide a framework for European certification schemes.
Want to know more about ISO/IEC 27001?
Find out all about the international standard for information security.
Buy the updated standard NBN ISO/IEC 27001:2023 in the NBN's e-shop.