Developing an ISO 27001 Information Security Policy

In this episode of InfoSec Insider, Frazer Grudgings, Senior Consultant at URM, offers key advice and guidance on creating an information security policy that meets the requirements of ISO 27001, the International Standard for Information Security Management Systems (ISMS’).  Frazer leverages his 15+ years of experience supporting organisations to certify against ISO 27001 to discuss:

• What an information security policy is in the context of ISO 27001
• How to develop an information security policy and what it should include in order to be conformant to the Standard
• The purpose of an information security policy.

Learn more about this topic: https://www.urmconsulting.com/blog/developing-an-iso-27001-information-security-policy

If you enjoyed this episode of InfoSec Insider, you can leave us a rating and review here:  https://ratethispodcast.com/infosecinsider 

You can find more episodes of InfoSec Insider here:  

https://urmconsulting.com/podcasts 

Brought to you by URM, the UK’s leading information and cyber security specialists.