According to the latest annual survey from the ISO, the number of ISO 27001:2013 Certifications issued in Ireland during 2016 has risen by 25% compared to 2015. In total 175 ISO 27001 certificates were issued by INAB accredited Certification Bodies. This is the largest increase in 5 years of Irish certification to the information security standard. The United Kingdom experienced similar growth in 2016 with a 20% increase in organisations becoming certified to the globally recognised standard.
This trend also stretches across Europe with overall growth across the continent at 9%. One of the key factors to this strong increase in certification is down to organisations tackling the ever-increasing number of cybersecurity threats that organisations experience on a daily basis. Also, this year the EU parliament announced the arrival of the General Data Protection Regulation (GDPR) which comes into effect May 25th, 2018. From May organisations must be able to demonstrate compliance to GDPR in the event of a data breach. If they cannot they will incur penalties of up to 4% gross profit of the business.
ISO 27001 provides a framework to minimise the risk of data breaches both internally and externally plus allows organisations to demonstrate compliance once implemented correctly.
What is the ISO annual survey?
The ISO Annual Survey is the most comprehensive overview of certifications to all ISO standards currently available. The ISO Survey of Certifications is an annual survey of the number of valid certificates to ISO management system standards worldwide. In order to compile the information in this survey, ISO contact accredited* certification bodies and request information about the number of valid certificates they have as of 31st December 2016.
What is ISO 27001:2013?
ISO 27001 is the international standard that is recognised globally for managing risks to the security of information you hold. Certification to ISO 27001 allows you to prove to your clients and other stakeholders that you are managing the security of your information. ISO 27001:2013 (the current version of ISO 27001) provides a set of standardized requirements for an Information Security Management System (ISMS). The standard adopts a process-based approach for establishing, implementing, operating, monitoring, maintaining, and improving your ISMS.
The ISO 27001 standard and ISMS provides a framework for information security management best practice that helps organisations to:
- Protect client and employee information
- Manage risks to information security effectively
- Achieve compliance with regulations such as the European Union General Data Protection Regulation (EU GDPR)
- Protect the company’s brand image
If you wish to avail of our GDPR Gap Analysis please fill out the form below and we will be in contact within 24hrs.