I am a student at University of Advancing Technology in the BS network security program and have been assigned to ask a question on a one of the security frameworks we are studying.
My question is to anyone who has implemented the ISO 27000 family of security frameworks what was your experience on beginning the process (good and bad) and how much effort did it take to finally get the certification? Also, if you don’t mind answering a second question, I was wondering how hard is it to maintain the security framework once you achieved the ISO 27001 certification?
Thanks in advance,
October 12, 2012 12:17 AM
October 15, 2012 10:28 PM