A recent survey conducted by IT Governance Ltd
, revealed that 45,5% of the 188 respondents are already certified to ISO 27001 and 41,5% are keen to get started on transitioning to ISO/IEC 27001:2013
straight away. In addition, 22,5% have said that they will move onto ISO/IEC 27001:2013 when they complete their current certification project.
The survey was conducted by IT Governance as a follow-up activity on the very popular ‘ISO 27001:2013 Transition Webinar’ delivered in October 2013 by Steve Watkins, Director at IT Governance, Chair of the UK ISO 27001 User Group and UKAS technical assessor for ISO 27001.
Steve Watkins commented, “There is a clear indication that the new version of the internationally recognised ISO 27001 standard has caused a stir and many organisations are looking ahead at transitioning their ISMS to harness the benefits available from the changes in the 2013 version of the standard.
“ISO 27001 brings a lot of business benefits and is driven by specific objectives including improvement of cyber security, operational efficiencies and competitive advantages, and the changes in the 2013 version remove many of the perceived barriers users associated with the 2005 version.”
The IT Governance post-webinar survey revealed that the two areas of the new version that organisations are most concerned about are risk assessments and audits. 37% of the respondents said that they are concerned about the changes related to risk assessments that will require adjustments. 36% are concerned about what the audit requirements will be for ISO/IEC 27001:2013.
IT Governance will be delivering the ISO27001 2013 Certified ISMS Transition Training Course
in a classroom-based environment in London in December 2013 as well as a one-day live-online session with ISO27001 expert Alan Calder. Bookings can be made online here:
The latest ISO survey shows that there were over 19,500 ISO 27001-certified organisations in 2012 worldwide and this number is growing steadily.
Additionally, on 26th
November the the Department for Business, Innovation and Skills published a research report on UK Cyber Security Standards
, which revealed that ISO 27001 is the most frequently adopted standard by a significant margin.