For many organizations, compliance with data security standards doesn’t seem to be getting easier. IT security
compliance efforts are forever competing with projects that may or may not address information security threats, operational vulnerabilities and daily business risks, and the compliance projects often lose the battle for resources
In this paper, you’ll learn about IT security compliance for ISO/IEC 27001 from an auditor’s perspective. Although the control objectives prescribed in ISO/IEC 27001 represent only a portion of the data security compliance obligations faced by many organizations, the standard is one of the most widely used information security management frameworks worldwide.