Today: July 1, 2016, 1:35 pm
  
Business

Information security needs management, says SGS

Information security needs management, says SGS
“Many organisations would claim that information is their most valuable asset, yet they don’t have the management commitment to ensure that information is secure,” says Richard Skipsey of SGS United Kingdom Ltd. “Managers delegate online security to the IT department and think the job is done.”

 

PR-Inside.com: 2014-08-18 18:29:45
Yet the cost to UK plc of security breaches is “in the order of billions of pounds per annum…. (and) … it’s roughly tripled over the last year”, according to the 2013 Information Security Breaches Survey by the Department for Business, Innovation and Skills*.

The survey shows that 78% of large organisations were attacked by an unauthorised outsider in the last year and that smaller businesses, “which used not to be a target, are now also coming under increasing attack”.

The average cost to a large organisation of its worst security breach ranged from £450,000 to £850,000, while smaller organisations faced bills of £35,000 to £65,000 for the worst incidents.

Mr Skipsey welcomes the fact that the importance of management commitment, along with effective measurement, is emphasized in ISO 27001:2013, the revised international standard covering the security of an organisation’s information and IT systems.

“Effective information security must be championed, funded and managed at board level,” says Mr Skipsey. “It needs to be implemented as part of an overall business strategy, not in isolation.”

The strategy must also include all information that is valuable to an organisation – from research and design prototypes to forecasts and negotiating positions. It is also not limited to online activity and includes paper records, images and even conversations.

Mr Skipsey is Global Product Manager - ISO 27001 and ISO 22301 at SGS, the world's leading inspection, verification, certification, testing and training organisation.

SGS, which has been accredited by UKAS to assess ISO/IEC 27001:2013, has just updated its booklet on ‘Issues to be considered when establishing an Information Security Management System’ to reflect the changes since the initial standard ISO 27001 was established in 2005.

The booklet summarises the principal requirements for guiding and establishing an information security policy and system.


About SGS
SGS is the world’s leading inspection, verification, testing and certification company. SGS is recognized as the global benchmark for quality and integrity. With more than 80,000 employees, SGS operates a network of over 1,650 offices and laboratories around the world. www.sgs.co.uk

Press Information


Published by
Mike Apps
+ 44 (0) 20 7689 9009
e-mail
www.imagelinepr.co.uk/imageline/press-centre.php



# 377 Words
Related Articles
 
More From Business
Nothing But Loves Announces Launch of Charity [..]
In the opinion of the new charity fundraising site Nothing But Loves, charity donors shouldn't have to see big parts [..]
cinec 2016: Hightec and Hidden Stars
In 1948, Alfred Hitchcock stunned the world with "Rope": an intimate play-like thriller seemingly filmed in real time. The director [..]
RECORD BREAKING CROWDFUNDING AT 5th ANNUAL GLOBAL [..]
The 5th annual Global Crowdfunding Convention (GCC) has announced their 2016 event lineup. The Las Vegas, Nevada, mainstay will [..]
New enclosure: SmartTOP Add-On Convertible Top Controller [..]
Las Vegas, Nevada - June 30th, 2016 The SmartTOP Add-On Convertible Top Controller made by aftermarket automotive electronics specialist [..]
Moulded on the Pipe: Universal, Compact and [..]
The technical evolution is mostly targeted at designing new solutions at the state of the art to simplify work and [..]

Disclaimer: If you have any questions regarding information in this press release please contact the company added in the press release. Please do not contact pr-inside. We will not be able to assist you. PR-inside disclaims the content included in this release.