By:
JAY IMSZENNIK
March 3rd, 2017
The intent of achieving and maintaining compliance with ISO 27001 is for an organization to demonstrate its continuing ability to proactively assess their information security risk posture and manage that risk according to the organizations’ risk appetite. The focus is truly on the governance and maintenance of the information security management system (ISMS).