Workshop on ISO/IEC 27001 Information Security Management System Certification 2016
(26 October 2016)
The Council and the Hong Kong Accreditation Service co-organised the Workshop on ISO/IEC 27001 Information Security Management System Certification 2016. (Flyer)
Information Security Management System (ISMS) is a management system or a part of the overall management system using a systematic approach for establishing, implementing, operating, monitoring, reviewing, maintaining and improving information security. It is applicable to organisations of all sizes and in all business sectors, particularly those which need to store and/ or handle sensitive personal or commercial information.
Given the increasing concern over information security and the potential loss to business due to security breaches, more organisations are aware of the advantages of being certified to ISO/IEC 27001, which is one of the most well-recognised ISMS standards globally. Certification of ISMS to ISO/IEC 27001 allows an organisation to demonstrate that its information assets are adequately protected against information security risks. It gives greater confidence to its business partners, clients, authorities and other interested parties.
The workshop gave an overview of ISO/IEC 27001 and discussed how to get prepared for the certification process. There was also experience sharing by certified users, as well as an introduction on the services provided by the Hong Kong Accreditation Service.
Topics of the workshop include:
- Practical Implementation of ISO/IEC 27001 and Case Studies (Presentation)
- Getting Certified to ISO/IEC 27001 – Experience Sharing (Presentation)
- Hong Kong Accreditation Service (HKAS) – How Its Services Help You? (Presentation)