Skip to Menu Skip to Search Contact Us Hong-Kong Websites & Languages Skip to Content

With the advancement in technology, everyone would have more than one tech gadgets in hand.

ISO 27001

The concept of IoT (Internet of Things), that anything encountered in daily lives would be able to connect to the Internet for collection and exchange of data, is still blooming hot. With the increase in reliance of technology, data becomes expensive in this era, and there would be more hackers willing to take risks to obtain them for money.

The news on the WannaCry ransomware was viral in May 2017. It encrypted most of the data in the computer and asked for a ransom of certain amount of bitcoin for decryption. It infected over 2 million computers in more than 150 countries, including NHS, the hospital systems in UK. The awareness of information security among public has increased greatly since the incident, especially on data breaches.

Data breaches did not only happen to personal computers, it occurs in big companies as well. In 2016, reported data breaches of big organizations have increased by 40%. Yahoo has uncovered the largest breach in history in 14 December 2016[1], which may have compromised the personal information of one billion Yahoo accounts since 2003.

To reduce the risk of information security breach, and show your consumers you commitment to information security, ISO 27001:2013 Information Security Management System (ISMS) implementation is definitely recommended. Implementing ISO 27001:2013 would allow examination and control of information security risk; significantly reduce risk of fraud, information loss and disclosure.

It is easy to take the first step for personal accounts to reduce risks in information security breaches, like using a strong password or backing up data. But when it comes to organizational scale, it is difficult reduce data breach risks by small, simple measures. ISO 27001:2013 would enable organizations to identify and secure information security risks with precise guidelines and framework.

Click this infographic for more information on ISO 27001:2013.
Infographic - ISO 27001 Information Security Management Systerm

About ISO 27001:2013

ISO/IEC 27001:2013 states the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization. It could demonstrate to existing and potential customers, suppliers and shareholders the integrity of company’s data and systems and the commitment to information security. It enforces information security and reduces the possible risk of fraud, information loss and disclosure. Learn more

Related Training:

About SGS

In the field of Information Technology, SGS has been taking the lead to provide enterprises with an array of IT certification and training services. SGS is the first batch of certified organizations to provide ISO 20000 and ISO/IEC 27001 certifications and the first organization to be certified to provide auditing from both CSA STAR Certification and EuroCloud. SGS is also the first batch of certified organizations to bring ECSA auditing trainings to China.

SGS provides certification auditing and training services on information security management systems, should you have any inquires,please contact us at:

Certification and Business Enhancement
t: (852) 2765 3620

Reference:

1. https://www.identityforce.com/blog/2016-data-breaches