This website uses cookies. View our cookie policy
Close
Asia
Select regional store:

ISO 27001, the information security standard

ISO/IEC 27001:2013 (ISO 27001) is the international standard that describes best practice for an ISMS (information security management system). Achieving accredited certification to ISO 27001 demonstrates that your organisation is following international information security best practices.

A copy of the official ISO 27001 standard can be purchased here >>


What is an ISMS?

An ISMS is a system of processes that helps to establish, implement, operate, monitor, review, maintain and improve an organisation's information security to achieve business objectives.

An ISO 27001-aligned ISMS helps you manage all your security practices (both electronic and physical) coherently, consistently and cost-effectively.

Find out how to implement an ISMS >>


Why has implementing ISO 27001 in Asia-Pacific become essential?

Cyber crime is on the increase. The IBM 2017 Cost of Data Breach Study found that the average data breach costs $3.62 million.

It is therefore imperative that Asia-Pacific organisations have strategies in place to protect themselves from this growing threat.

Implementing an ISO 27001 ISMS will help to improve information security practices and protect their information assets.

ISO 27001 certifications in East Asia and Pacific have already grown rapidly, reaching almost 15,000 – the highest number worldwide – in 2016 (ISO Survey). Below is the percentage increase of achieved certificates in 2016 compared with 2011.

 

ISO 27001: get board and secure budget

Australia

464%

ISO 27001: get board and secure budget

India

103%

ISO 27001: get board and secure budget

Philippines

184%

ISO 27001: get board and secure budget

Singapore

64%

ISO 27001: get board and secure budget

Malaysia

261%

 


Advantages of ISO 27001 certification

  • Avoid financial penalties due to data breaches
  • Protect your information and intellectual property rights
  • Protect your reputation
  • Satisfy audit requirements
  • Gain a competitive advantage with new and existing clients
  • Build trust globally
Read about the advantages of ISO 27001 certification >>​

How to implement an ISMS

Implementing an ISO 27001-compliant ISMS will include the following key elements: 

ISO 2700: conduct staff awareness training

Get board commitment and secure a budget

ISO 27001: get board and secure budget

Review and implement the required controls

ISO 2700: conduct staff awareness training

Develop internal competence

ISO 2700: conduct staff awareness training

Develop management system documentation

ISO 27001: get board and secure budget

Identify interested parties, and legal, regulatory and contractual requirements

ISO 2700: conduct staff awareness training

Conduct staff awareness training

ISO 2700: conduct staff awareness training

Scope the project

ISO 27001: get board and secure budget

Measure, monitor, review and audit the ISMS

ISO 2700: conduct staff awareness training

Conduct a risk assessment

ISO 27001: get board and secure budget

Get certified

Read about our complete approach to implementing an ISMS >>


How IT Governance can help organisations in Asia-Pacific

We understand that every organisation is different, so we can support you with ISO 27001 implementation through our variety of resources. 

These ISO 27001 resources will give you more information about the ISO 27001 standard and the benefits of achieving certification, as well as guide you on the implementation of an ISO 27001-compliant ISMS.

Download free information on ISO 27001

 

Shop our full range of ISO 27001 products and services

 

Why choose us?

  • IT Governance has more than 15 years’ experience supporting organisations with the implementation of the ISO 27001 standard.
  • We can help smaller organisations achieve accreditation in just three months.

We specifically offer:

  • Compliance tools, packaged solutions and online training courses designed to suit your organisations requirements;
  • Consultancy to help your organisation achieve success; and
  • A pricing structure that meets your company’s needs with no hidden costs.

 

Let’s get started on your ISO 27001 project

Whatever the nature or size of your problem, we are here to help.

Click the button below to contact us and one of our consultancy team will be in touch as soon as possible to kick-start your ISO 27001 project.

Speak to an expert