Search engine for discovering works of Art, research articles, and books related to Art and Culture
Javascript must be enabled to continue!
A Comparative Review of ISMS Implementation Based on ISO 27000 Series in Organizations of Different Business Sectors
View through CrossRef
Abstract
Organizations have different takes on Information Security Management Systems (ISMS) since security measurements vary according to their business relevance. One way to assure ISMS is being well-implemented is by having a standard compliance such as the ISO 27000 series. The ISO 27000 series is a family of standards that provides a framework for best practice ISMS that helps organizations keep their information assets secure. This paper intends to seek how organizations in different business sectors implement ISMS in their practices. By identifying which organization attains a higher number of ISO requirements, it is anticipated that the characteristics that increase the chances of an organization being certified can be distinguished. This paper reviews case studies regarding the ISMS implementation based on ISO 27000 series between organizations in different business sectors. The result of this paper presents the state of ISO compliance of the organizations. The findings also discussed the characteristics of organizations that are applicable for certification. Through the findings, it is found that the organization, which fulfilled the highest number of ISO requirement, has a stronger possibility of being certified. However, ISO standards should be more dynamic to support diverse business environment thus avoiding generalization to get compliance.
Title: A Comparative Review of ISMS Implementation Based on ISO 27000 Series in Organizations of Different Business Sectors
Description:
Abstract
Organizations have different takes on Information Security Management Systems (ISMS) since security measurements vary according to their business relevance.
One way to assure ISMS is being well-implemented is by having a standard compliance such as the ISO 27000 series.
The ISO 27000 series is a family of standards that provides a framework for best practice ISMS that helps organizations keep their information assets secure.
This paper intends to seek how organizations in different business sectors implement ISMS in their practices.
By identifying which organization attains a higher number of ISO requirements, it is anticipated that the characteristics that increase the chances of an organization being certified can be distinguished.
This paper reviews case studies regarding the ISMS implementation based on ISO 27000 series between organizations in different business sectors.
The result of this paper presents the state of ISO compliance of the organizations.
The findings also discussed the characteristics of organizations that are applicable for certification.
Through the findings, it is found that the organization, which fulfilled the highest number of ISO requirement, has a stronger possibility of being certified.
However, ISO standards should be more dynamic to support diverse business environment thus avoiding generalization to get compliance.
Related Results
Primerjalna književnost na prelomu tisočletja
Primerjalna književnost na prelomu tisočletja
In a comprehensive and at times critical manner, this volume seeks to shed light on the development of events in Western (i.e., European and North American) comparative literature ...
Evaluating the Science to Inform the Physical Activity Guidelines for Americans Midcourse Report
Evaluating the Science to Inform the Physical Activity Guidelines for Americans Midcourse Report
Abstract
The Physical Activity Guidelines for Americans (Guidelines) advises older adults to be as active as possible. Yet, despite the well documented benefits of physical a...
Standardization in Health and Medical Informatics
Standardization in Health and Medical Informatics
When things go well then often it is because they conform to standards (ISO, 2005). According to the Oxford Dictionary of Modern English, there is a lot of explanation of what stan...
INTEGRASI DIGITAL FORENSIC READINESS DAN INFORMATION SECURITY MANAGEMENT SYSTEM PADA ORGANISASI PEMERINTAHAN: SYSTEMATIC LITERATURE REVIEW
INTEGRASI DIGITAL FORENSIC READINESS DAN INFORMATION SECURITY MANAGEMENT SYSTEM PADA ORGANISASI PEMERINTAHAN: SYSTEMATIC LITERATURE REVIEW
Transformasi digital di Indonesia dan berbagai negara membawa manfaat signifikan, seperti peningkatan layanan publik melalui e-government, e-payment dan layanan lainnya. Namun, tra...
The influence of corporate social responsibility on impulse buying
The influence of corporate social responsibility on impulse buying
PurposeCorporate social responsibility (CSR) ISO standards have been noted as an essential marketing strategy by which firms can achieve consumer trust while improving environmenta...
A worldwide analysis of ISO 9000 standard diffusion
A worldwide analysis of ISO 9000 standard diffusion
PurposeTo provide a cross‐section of International Standardization Organization (ISO) 9000 quality certification diffusion over time and its impact on industrial systems.Design/met...
Developing local processing technology for black and green tea and evaluation of conformance to ISO standard
Developing local processing technology for black and green tea and evaluation of conformance to ISO standard
Purpose
– The purpose of this paper is to describe a project designed with the aim of developing a black and green tea processing technology for Nigerian farmers an...