Information Security Management Systems

Accreditation For Information Security Management Systems (ISMS)

Information Security Management Systems certification is provided by certification bodies to organizations who have demonstrated that they have implemented a system for the management of information security. ISO/IEC 27001 provides a model for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an information security management system (ISMS). The design and implementation of an ISMS is influenced by the organization’s needs and objectives, security requirements, processes, size, and structure.

A Certification Body applying for ISO 27001 accreditation must conform to ISO/IEC 17021 and other additional International requirements as detailed in Specific Requirements for Accreditation for ISMS Scheme.