Interviews

Booklet for secure information

by Mark Rowe

Many businesses would claim that information is their most valuable asset, yet they do not develop a culture that gives priority to keeping information secure. That’s according to an inspection, verification, testing and certification company. Richard Skipsey, pictured, of SGS United Kingdom says: “Effective information security must be championed, funded and managed from the top down. It needs to be implemented as part of an overall business strategy, not in isolation.”

SGS has just updated its free booklet on ‘Issues to be considered when establishing an Information Security Management System’. It’s to help companies which are thinking about aiming for ISO 27001:2013, the revised international standard covering the security organisation’s information and IT systems. To download the booklet, visit www.sgs.co.uk/ISO27001booklet.

Mr Skipsey says: “Even if an organisation does not want to commit to attaining the standard – although more and more businesses and government bodies are making it a requirement in suppliers’ tender documents – the booklet helps owners and senior managers clarify where they might be vulnerable in losing information.”

He stresses that the strategy must include all information that is valuable to an organisation – from research and design prototypes to forecasts and negotiating positions. It is also not limited to online activity and includes paper records, images and even conversations.

The cost to UK plc of security breaches is “in the order of billions of pounds per annum…. (and) … it’s roughly tripled over the last year”, according to the most recent annual Information Security Breaches Survey by the Department for Business, Innovation and Skills.

Mr Skipsey is Global Product Manager – ISO 27001 and ISO 22301 at SGS. The company has recently been accredited by UKAS to assess ISO/IEC 27001:2013.

The information security booklet has been updated to reflect the changes since the initial standard ISO 27001 was established in 2005. Mr Skipsey welcomes the fact that the importance of management commitment, along with effective measurement, is given more prominence in the revised standard.

Related News

Newsletter

Subscribe to our weekly newsletter to stay on top of security news and events.

© 2024 Professional Security Magazine. All rights reserved.

Website by MSEC Marketing