The ISO27001 standard requires an organisation to list, quantify and monitor all security breaches and incidents. It also requires that any evidence that it presents in a criminal or civil action against an individual or company fully conforms to all relevant legislation.
The best practice advice provided by ISO27002 outlines that these requirements are best achieved by implementing incident response and forensic readiness plans. All such plans are major contributors to ensuring conformance to ISO27001 on preventative action – essential to the ISMS continual process improvement.
Attendance at our Digital Forensics Foundation course will help you to do this. It also provides critical advice that enables you to fulfill the Cabinet Office ‘minimum mandatory measures’ requirement to have a ‘forensic readiness policy’!
And our ISO 27001 series of courses …