7. Conclusion

Among the many forms of malicious damage an organization can suffer, one of the most critical is undoubtedly a breach of information security. Such attacks can jeopardize an organization's long-term survival by attacking its "internal memory", its primary source of added value.

With this in mind, the aim of the ISMS is to ensure that the organization's information is as secure as possible, in a spirit of continuous improvement.

Applying such a standard within the organization will help protect corporate information by formalizing processes, implementing actions to secure and manage IT risk (and risks arising from this type of operational risk), as well as training and awareness-raising, and risk traceability through documentation and formalization/recording of evidence.

The ISMS, in application of the

You do not have access to this resource.

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource.
Click here to request your free trial access!

Already subscribed? Log in!

The Ultimate Scientific and Technical Reference

A Comprehensive Knowledge Base, with over 1,200 authors and 100 scientific advisors

+ More than 10,000 articles and 1,000 how-to sheets, over 800 new or updated articles every year

From design to prototyping, right through to industrialization, the reference for securing the development of your industrial projects

This article is included in

Safety and risk management

This offer includes:

Knowledge Base

Updated and enriched with articles validated by our scientific committees

Services

A set of exclusive tools to complement the resources

Practical Path

Operational and didactic, to guarantee the acquisition of transversal skills

Doc & Quiz

Interactive articles with quizzes, for constructive reading

Subscribe now!

Ongoing reading
Conclusion

Previous
page Appendices: feedback

Bibliography

(1) - BENNASAR (M.), CHAMPENOIS (A.), ARNOULD (P.) - Manager la sécurité du SI. - Dunod (2007).
(2) - BOILEAU (T.) - SO 27001, un Système de Management de la Sécurité de l'information : Exemple de mise en œuvre d'un SMSI et sa plate-forme logicielle...

Websites

Site dedicated to ISO 27001 :

http://www.27001-online.com/

Website dedicated to IT Governance:

http://www.itgovernance.eu/c-17-iso27001

Site dedicated to ISO 27001 certification (LSTI) :

Standards and norms

Lignes directrices pour l'audit des systèmes de management de la qualité et/ou de management environnemental. - ISO/IEC 19011 - 2012
Quality management systems – Requirements - ISO 9001 - 2015
Environmental management systems – Requirements and guidelines for use. - ISO 14001 - 2015
Conformity assessment – Requirements for bodies providing audit and certification of management systems – Part 1:...