Cyber security is a key topic on the US Department of Homeland Security’s agenda. Not only is it recognized as a serious threat to the government, it also effects our everyday lives; we rely on a vast array of networks and infrastructure to power our homes, travel, communicate, and run our economy as well as provide government services. President Obama poignantly stated in one of his latest speeches:
“Cyber threat is one of the most serious economic and national security challenges we face as a nation.”
So how can corporations throughout America protect their livelihoods, as well as the safety of their customers, from vicious cyber attacks? How can Amtrak ensure we get to work on time? How can T-Mobile ensure we always stay in touch with people? How can Bank of America ensure our money is kept safe?
We’ve already seen what effect cyber attacks can have on US corporations: who can forget the great hacks of Sony, Adobe and Target which left millions of users vulnerable after their confidential details (names, addresses, card details etc.) were exposed online? It’s now only a matter of time before cyber attacks start affecting our critical infrastructure.
Last year, Homeland Security Secretary Janet Napolitano warned that, “Our country will, at some point, face a major cyber event that will have a serious effect on our lives, our economy and the everyday functioning of our society.”
Not only do we need a combined approach to cyber security, corporations need to take steps to do what is right by their country and their customers. ISO/IEC 27001:2013, the internationally accepted cyber security standard, provides best-practice requirements for an information security management system (ISMS) to help make your information more secure. Already used by over 550 American corporations (2012), this standard is experiencing an average 30% increase in adoption each year throughout the US.
By implementing ISO27001, corporations can benefit from more secure systems, and the opportunity to win new business and gain trust from existing customers because of their increased level of security.
No standard, process or piece of software can completely protect your business from a cyber attack, but implementing an additional precaution to guarding your information can significantly reduce the chances of your being hacked and mitigate the effects of any attack.
To discover more about ISO27001, download our free Information and ISO27001 green paper.
If you are already thinking of implementing ISO27001 into your ISMS, take a look at the ISO27001:2013 ISMS Standalone Documentation Toolkit. This provides pre-written documentation which makes creating and managing your ISO27001-compliant ISMS straightforward.