ISO/IEC 27001:2017 certification

ISO/IEC 27001:2017 is the international standard for an information security management system (ISMS).  Originally it was jointly published in 2005, by the International Organisation for Standardization (ISO) and the International Electrotechnical Commission (IEC).  The continued growth of data held by businesses has witnessed many more seek to implement an ISMS that complies with ISO 27001.

A data breach occurs when personal information is accessed, disclosed without authorisation or is lost.  Individuals worldwide have come to expect high levels of protection of personal data and data breaches can have catastrophic consequences for business reputation.   In Australia, the Privacy Act 1988 obliges organisations to which the Act applies, to notify affected individuals when a data breach involving personal information is likely to result in serious harm.  The Office of the Australian Information Commissioner receives mandatory notifications under the Notifiable Data Breaches (NDB) scheme.

Back in 2010, Australian Workplace Strategies assisted in designing and implementing the ISMS of the first Australian legal practice to obtain third-party certification to ISO 27001:2005.  With a strong background in devising and implementing integrated management systems incorporating an ISMS, the team at Australian Workplace Strategies can ensure you achieve certification to ISO 27001 quickly and efficiently.

Importantly, certification to ISO 27001 will demonstrate to all stakeholders that you have a robust and reliable management system in place to safeguard sensitive data.