ISO 27001 is just one of the standards published by the International Organisation for Standardisation (ISO) which is made up of over 160 representatives from different countries. Other certifications include ISO 9001 for quality management, ISO 14001 for environmental management and ISO 50001 for energy management.
Google have made a clever decision to opt for ISO 27001 as not only is it the most prestigious certification for information security management but it is recognised worldwide. This means that they only need to have achieved the one standard to demonstrate their commitment to information security to customers and partners around the globe, rather than needing to achieve a different standard for each country.
Peter Gamble, Managing Director of QMS International plc, a UK based ISO certification body, said, “It is not only multi-national organisations such as Google that should be considering ISO 27001 but SMEs too. Data security is highly linked to a company’s reputation and trust so by ensuring that all of the information you handle is protected, you are significantly reducing the risk of falling into disrepute.”
ISO 27001 is available to be achieved by businesses of all sizes and in general price will depend on a company’s turnover, making it more accessible to start-ups and smaller companies. It is not only businesses that deal with information online and via email that need to ensure that their data protection processes are up to date but all businesses where customer, supplier and partner information is processed.
If you’d like to find out how ISO 27001 could be of benefit to your organisation, visit QMS’s website at http://www.qmsuk.com/