Changes to ISO 27001: What’s new in the 2013 ISO 27001 update?

ISO 27001:2013 is an information security standard published by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) under the joint ISO and IEC subcommittee. It is a specification for an information security management system (ISMS). The recent standard ISO 27001:2013 replaced the ISO 27001:2005 standard. Mentioned below are the significant changes:

SMAC (Social, Mobile, Analytics and Cloud)-The emerging Enterprise IT model

The emergence of social media, increasingly accessible through smartphones and tablets, has made information from all across the world accessible at a touch. The emerging technology enablers – Data analytics and cloud computing – will play a critical role in allowing businesses to tap into their customers and understand their buying behavior.The amalgamation of all these …

NIST Cybersecurity Framework v1.0 – Key Takeaways

The NIST cyber security Framework is a risk-based approach to managing cyber security risk, and is composed of three parts: The Framework Core, the Framework Implementation Tiers, and the Framework Profiles : 1. Framework Core : The Framework Core consists of five concurrent and continuous Functions—Identify, Protect, Detect, Respond and Recover. 2. Framework Implementation Tiers : …