Chapter 17. Benefits of an ISO 27001 ISMS

Executive summary

The benefits for an organization in adopting and deploying an ISO 27001 information security management system are three-fold:

  1. Cost-effective, fit-for-purpose information security and regulatory compliance;

  2. Out-performance vis-à-vis its competitors;

  3. Competitive advantage.

Structured Information Security Management System

Information security is a complex issue. Every information asset is subject to multiple threats and the interwoven mesh of related compliance regulation is such that there are no simple solutions. Information security has three key components: technological controls, procedural controls and user behaviour.

The board has to prioritize its approach to information security and ...

Get The Case for ISO 27001 now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.