Chapter 6. Certification
As with many other management system standards, there is a scheme that can be used by organisations to demonstrate their compliance with the internationally recognised standard for information security management, ISO27001.
Companies wishing to use this standard to demonstrate the robustness of their information security management arrangements need to subject themselves to an external audit.
For the assurance provided by the outcome of the audit to be recognised, the audit needs to be conducted in compliance with the recognised scheme; that is, the ‘accredited certification scheme’. This is is administered by the United Kingdom Accreditation Service (UKAS) in the UK and certificates issued under this scheme will bear ...
Get An Introduction to Information Security and ISO27001: A Pocket Guide now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
