Information is the principal activity of many organisations and it is vital that it is adequately protected from the threats which can endanger the continued existence of a company. In such circumstances, organisations must put in place appropriate controls and strategies which guarantee safe management of the processes of the enterprise, giving precedence to information protection.
In this guide, you will find simple explanations of the requisites of the ISO/IEC 27001 Standard and will be shown how to fulfil them, so making it easier to understand the various concepts in the standardised management system. It also uses a practical example to help you achieve greater understanding of the concepts and processes involved. The text also includes a copy of the UNE-ISO/IEC 27001 Standard.