Good Enough IT Risk Management

How does the ISO 27001:2013 affect your risk management process?

[fa icon="calendar"] Monday, 29 July 2013 / by Charlotte Colding

ISO / IEC 27001 was introduced in 2005 and has become a very popular international standard. Now ISO 27001 is being revised and a new version is due later in 2013. I’ve looked at the changes before and outlined the main differences between the old and the new version.

One central topic of the new ISO 27001 is the risk management processes. So our team here at Neupart has prepared a white paper to let you know how ISO 27001:2013 will impact your risk management processes.

Here’s a little teaser: One of the changes in the new ISO 27001 is that it only requires that you identify risks in relation to confidentiality, integrity and availability. This gives you greater flexibility in your choice of risk method.

You don’t have to provide an email address or any other information to get the PDF. If you have a moment, all I ask is that you let me know what you think about the changes in ISO / IEC 27001 or the whitepaper in the comments below.

Grab your copy of “How the ISO 27001 revision affects your risk management process” here.

Or view a webcast on the same topic here


About the Author: Lars Neupart is founder of Neupart A/S and wants you to know that SecureAware = efficient information security. Get more of him on Twitter.


PS: Click here to follow us on LinkedIn.

Emner: ISO 27001, Information Security Standards, Information risk management, ISMS, Risk management, SecureAware, ISO 27001 revision, ISO 27005

Good enough IT risk management

The Neupart blog offers advice and knowledge of effective information security management, security strategies, risk management, compliance with information security standards and other requirements, business continuity planning, ISO2700x, EU Data Protection Regulation, PCI DSS, etc.

Popular Posts