IT Governance provides free, practical guidance on how ISO 27001 can significantly reduce cyber risks


Leading cyber security consultancy IT Governance has released a practical guide on how ISO 27001 can provide organisations with a distinct competitive advantage, offering much-needed cyber security assurance to potential clients, the board, investors and insurers.

Compiled by cyber security expert and chief executive officer of IT Governance Alan Calder, the free guidance offers businesses pragmatic advice on how to reduce their cyber risks by implementing an information security management system aligned with the international information security standard, ISO 27001.

“Cyber crime is a low-cost, low-risk, high-reward pursuit, and every business – no matter how big or small – is a target. Automated attacks indiscriminately seek vulnerabilities to exploit, and even if a website isn’t obviously valuable in itself, it can be used as a means of attacking a larger organisation in the supply chain. Despite this fact, many businesses routinely underestimate the risks they face and fail to mitigate cyber threats,” says Alan Calder.

The guidance explains how businesses can defend themselves against increasingly opportunistic and aggressive cyber attacks, and delivers insights into the following:

  • Why ISO 27001 is the fastest growing security standard;
  • How organisations can reduce their cyber risk while continuing to support their business objectives;
  • How ISO 27001 can help companies improve their cyber security;
  • The nine pre-certification steps organisations can follow to implement ISO 27001;
  • How long it takes to implement ISO 27001 and how any company can get started with the standard straight away.
ISO 27001 is recognised the world over, and the Standard has the distinction of being independently auditable: accredited certification to the Standard proves to customers, stakeholders, insurers and staff that the organisation follows cyber security best practices.
The guide can be download for free from the IT Governance website.
This website uses cookies. View our cookie policy