I am a student at University of Advancing Technology in the BS network security program and have been assigned to ask a question on a one of the security frameworks we are studying.
My question is to anyone who has implemented the ISO 27000 family of security frameworks what was your experience on beginning the process (good and bad) and how much effort did it take to finally get the certification? Also, if you don’t mind answering a second question, I was wondering how hard is it to maintain the security framework once you achieved the ISO 27001 certification?
Thanks in advance,
Free Guide: Managing storage for virtual environments
Complete a brief survey to get a complimentary 70-page whitepaper featuring the best methods and solutions for your virtual environment, as well as hypervisor-specific management advice from TechTarget experts. Don’t miss out on this exclusive content!