ISO 27001, the information security management system standard, has undergone a major revision to ensure that it remains relevant to the needs of today’s organisations. The final draft of the new standard was finalised in May and it is expected to be published in October 2013.
LRQA UK will be hosting a series of one-day briefing sessions from October-December 2013 to help organisations understand the changes will take place. Dave Sherring, LRQA UK Training Managers said, “We have designed our briefing to cover all significant changes to the new ISO 27001 standard.” He added that the briefing sessions will be valuable for those organisations that hold certification to ISO 27001, or looking to gain approval in the near future, and wanting to better understand how the forthcoming changes will impact their management systems.
A key part of the briefing will look at the purpose of Annex SL which has been introduced to bring greater alignment between ISO management system standards and so make it easier for organisations to develop integrated management systems. Delegates will learn more about the forthcoming changes being made to ISO 27001:2013, the transition and timescales to certification and the relationship between the standards in the ISO 27000 series.
Sherring also stated, “This will ensure that delegates will have a good grasp of the new clauses and the impact that the restructuring of the controls will have on the direction of their information security management system.”