{"id":5181,"date":"2023-03-13T16:13:08","date_gmt":"2023-03-13T16:13:08","guid":{"rendered":"https:\/\/www.imsm.com\/south-africa\/?p=5181"},"modified":"2023-03-13T16:13:08","modified_gmt":"2023-03-13T16:13:08","slug":"iso-27001-for-businesses-everything-you-need-to-know","status":"publish","type":"post","link":"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/","title":{"rendered":"ISO 27001 for businesses: Everything you need to know"},"content":{"rendered":"<p>As a small business owner, adopting best practice cyber security may not be at the top of your to-do list, but it should be. How much is data protection worth to you?<\/p>\n<p>As an international standard for data security in the workplace, <a href=\"https:\/\/www.imsm.com\/south-africa\/iso-27001\/\">ISO 27001<\/a> is suitable for any and all businesses. To answer your questions about the process, procedure and the benefits including the all-important first stages of your audit, here are some FAQs surrounding <a href=\"https:\/\/www.imsm.com\/south-africa\/iso-27001\/\">ISO 27001<\/a>.<\/p>\n<h2>What is ISO 27001?<\/h2>\n<p><a href=\"https:\/\/www.imsm.com\/south-africa\/iso-27001\/\">ISO 27001<\/a> is an international standard for data security and cyber protection. It details best practice information security in a way that&#8217;s actionable for your organisation. Through the process of <a href=\"https:\/\/www.imsm.com\/south-africa\/iso-27001\/\">ISO 27001<\/a> certification, you&#8217;ll implement important procedures into your business processes that will protect you against security breaches and dangerous online activity.<\/p>\n<h2>Who needs ISO 27001?<\/h2>\n<p>Because businesses around the world are becoming increasingly reliant on technology, data is valuable for everyone and, therefore, data protection should be a priority for all organisations, no matter your size, not only will it safeguard your data and make your business watertight, it will also boost your own credibility and improve the service you deliver to customers and clients.<\/p>\n<figure class=\"u-TextAlignNone\"><a href=\"https:\/\/blog.imsm.com\/resources\/guide-to-iso-27001?_gl=1*em1862*_ga*NjM1NDUxMzIuMTY3NTY4NTM5Mg..*_ga_3D8T6ZJS4B*MTY3ODcyMzc4MS43Ny4xLjE2Nzg3MjM3OTAuMC4wLjA.\"><img decoding=\"async\" class=\"c-Image\" title=\"\" src=\"https:\/\/www.imsm.com\/south-africa\/wp-content\/uploads\/sites\/10\/2023\/03\/ISO-27001-Guide-Download.png\" alt=\"Download your free guide to ISO 27001\" \/><\/a><\/figure>\n<h2>Do small businesses need to think about data security?<\/h2>\n<p>Just because a business is small, doesn&#8217;t mean it&#8217;s not immune to digital threats. In fact, small businesses often have to be even more mindful than larger ones because they may not have the money or resources to rectify the damage caused by cyber attacks. So the answer is yes: all businesses need to make data protection a priority &#8211; no matter your size.<\/p>\n<h2>What are your cyber security responsibilities as an employer?<\/h2>\n<p>As an employer, it&#8217;s your responsibility to prevent data interception and theft as it can severely damage your company&#8217;s reputation. You must set out rules and regulations for controlling this risk.<\/p>\n<h2>What are the benefits of ISO 27001?<\/h2>\n<p><a href=\"https:\/\/www.imsm.com\/south-africa\/iso-27001\/\">ISO 27001<\/a> has many measurable benefits for your business. We&#8217;ve identified what we believe the five key benefits of the certification to be:<\/p>\n<ol>\n<li>Improved security<\/li>\n<li>Implemented controls<\/li>\n<li>It aligned with current management systems<\/li>\n<li>It creates a culture of continual improvement<\/li>\n<li>Awards you with a mark of quality<\/li>\n<\/ol>\n<h2>How much does ISO 27001 training cost?<\/h2>\n<p>We recommend a training course if you want to know how to plan and prepare for your <a href=\"https:\/\/www.imsm.com\/south-africa\/iso-27001\/\">ISO 27001<\/a> certification. The cost of this will depend on the levels of training that you require. You can expect this to cost between \u00a31000 and \u00a32500.<\/p>\n<h2>What is the statement of applicability for ISO 27001?<\/h2>\n<p>The statement of applicability (SoA) is a key component of ISO 27002. It&#8217;s a framework of policies surround the legality, physicality, and technicality of your data protection procedures. Completion of the SoA is a requirement for your certification.<\/p>\n<h2>What&#8217;s the difference between ISO 27001 and ISO 27002?<\/h2>\n<p>Where <a href=\"https:\/\/www.imsm.com\/south-africa\/iso-27001\/\">ISO 27001<\/a> is a management standard, ISO 27002 is more like a code of practice for security controls, outlining best practices for your data protection procedures. Businesses who are in the process of implementing <a href=\"https:\/\/www.imsm.com\/south-africa\/iso-27001\/\">ISO 27001<\/a> are required to use ISO 27002.<\/p>\n<h2>Does ISO 27001 cover the risks when employees bring their own devices into work?<\/h2>\n<p>You can align your bring your own device (BYOD) security policies with controls outlined in your <a href=\"https:\/\/www.imsm.com\/south-africa\/iso-27001\/\">ISO 27001<\/a> documentation. <a href=\"https:\/\/www.imsm.com\/south-africa\/iso-27001\/\">ISO 27001<\/a> can help you prepare for employees bringing their own device and lets you put in plans that will help mitigate breaches.<\/p>\n<figure class=\"u-TextAlignNone\"><a href=\"https:\/\/www.imsm.com\/south-africa\/iso-27001\/#contact-us\"><img decoding=\"async\" class=\"c-Image\" title=\"\" src=\"https:\/\/www.imsm.com\/south-africa\/wp-content\/uploads\/sites\/10\/2023\/03\/ISO-27001-Get-your-free-quote.png\" alt=\"Get your free quote for ISO 27001\" \/><\/a><\/figure>\n","protected":false},"excerpt":{"rendered":"<p>As a small business owner, adopting best practice cyber security may not be at the top of your to-do list, [&hellip;]<\/p>\n","protected":false},"author":25,"featured_media":5185,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"content-type":"","inline_featured_image":false,"pgc_sgb_lightbox_settings":"","footnotes":""},"categories":[1],"tags":[19,48,15,46,47,26,49,36],"class_list":["post-5181","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorised","tag-data-security","tag-information-security","tag-iso-27001","tag-iso-certification","tag-iso-implementation","tag-iso-standards","tag-management-standards","tag-quality-management"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.9 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>ISO 27001: Everything you need to know | IMSM ZA<\/title>\n<meta name=\"description\" content=\"As a small business owner, adopting best practice cyber security may not be at the top of your to-do list, but it should be.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"ISO 27001: Everything you need to know | IMSM ZA\" \/>\n<meta property=\"og:description\" content=\"As a small business owner, adopting best practice cyber security may not be at the top of your to-do list, but it should be.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/\" \/>\n<meta property=\"og:site_name\" content=\"IMSM ZA\" \/>\n<meta property=\"article:published_time\" content=\"2023-03-13T16:13:08+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.imsm.com\/south-africa\/wp-content\/uploads\/sites\/10\/2023\/03\/ISO-27001-everything-you-need-to-know-FEATURE.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1500\" \/>\n\t<meta property=\"og:image:height\" content=\"1500\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"amywright\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"amywright\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/\",\"url\":\"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/\",\"name\":\"ISO 27001: Everything you need to know | IMSM ZA\",\"isPartOf\":{\"@id\":\"https:\/\/www.imsm.com\/south-africa\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.imsm.com\/south-africa\/wp-content\/uploads\/sites\/10\/2023\/03\/ISO-27001-everything-you-need-to-know-FEATURE.png\",\"datePublished\":\"2023-03-13T16:13:08+00:00\",\"dateModified\":\"2023-03-13T16:13:08+00:00\",\"author\":{\"@id\":\"https:\/\/www.imsm.com\/south-africa\/#\/schema\/person\/990a6ba5dfd82cda313e2dd00eb363b0\"},\"description\":\"As a small business owner, adopting best practice cyber security may not be at the top of your to-do list, but it should be.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/#breadcrumb\"},\"inLanguage\":\"af-ZA\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"af-ZA\",\"@id\":\"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/#primaryimage\",\"url\":\"https:\/\/www.imsm.com\/south-africa\/wp-content\/uploads\/sites\/10\/2023\/03\/ISO-27001-everything-you-need-to-know-FEATURE.png\",\"contentUrl\":\"https:\/\/www.imsm.com\/south-africa\/wp-content\/uploads\/sites\/10\/2023\/03\/ISO-27001-everything-you-need-to-know-FEATURE.png\",\"width\":1500,\"height\":1500},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.imsm.com\/south-africa\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"ISO 27001 for businesses: Everything you need to know\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.imsm.com\/south-africa\/#website\",\"url\":\"https:\/\/www.imsm.com\/south-africa\/\",\"name\":\"IMSM ZA\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.imsm.com\/south-africa\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"af-ZA\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.imsm.com\/south-africa\/#\/schema\/person\/990a6ba5dfd82cda313e2dd00eb363b0\",\"name\":\"amywright\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"af-ZA\",\"@id\":\"https:\/\/www.imsm.com\/south-africa\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/b9a7d7e0f867d04d3ec6ad1557548ab8?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/b9a7d7e0f867d04d3ec6ad1557548ab8?s=96&d=mm&r=g\",\"caption\":\"amywright\"},\"url\":\"https:\/\/www.imsm.com\/south-africa\/news\/author\/amywright\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"ISO 27001: Everything you need to know | IMSM ZA","description":"As a small business owner, adopting best practice cyber security may not be at the top of your to-do list, but it should be.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/","og_locale":"en_US","og_type":"article","og_title":"ISO 27001: Everything you need to know | IMSM ZA","og_description":"As a small business owner, adopting best practice cyber security may not be at the top of your to-do list, but it should be.","og_url":"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/","og_site_name":"IMSM ZA","article_published_time":"2023-03-13T16:13:08+00:00","og_image":[{"width":1500,"height":1500,"url":"https:\/\/www.imsm.com\/south-africa\/wp-content\/uploads\/sites\/10\/2023\/03\/ISO-27001-everything-you-need-to-know-FEATURE.png","type":"image\/png"}],"author":"amywright","twitter_card":"summary_large_image","twitter_misc":{"Written by":"amywright","Est. reading time":"4 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/","url":"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/","name":"ISO 27001: Everything you need to know | IMSM ZA","isPartOf":{"@id":"https:\/\/www.imsm.com\/south-africa\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/#primaryimage"},"image":{"@id":"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/#primaryimage"},"thumbnailUrl":"https:\/\/www.imsm.com\/south-africa\/wp-content\/uploads\/sites\/10\/2023\/03\/ISO-27001-everything-you-need-to-know-FEATURE.png","datePublished":"2023-03-13T16:13:08+00:00","dateModified":"2023-03-13T16:13:08+00:00","author":{"@id":"https:\/\/www.imsm.com\/south-africa\/#\/schema\/person\/990a6ba5dfd82cda313e2dd00eb363b0"},"description":"As a small business owner, adopting best practice cyber security may not be at the top of your to-do list, but it should be.","breadcrumb":{"@id":"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/#breadcrumb"},"inLanguage":"af-ZA","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/"]}]},{"@type":"ImageObject","inLanguage":"af-ZA","@id":"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/#primaryimage","url":"https:\/\/www.imsm.com\/south-africa\/wp-content\/uploads\/sites\/10\/2023\/03\/ISO-27001-everything-you-need-to-know-FEATURE.png","contentUrl":"https:\/\/www.imsm.com\/south-africa\/wp-content\/uploads\/sites\/10\/2023\/03\/ISO-27001-everything-you-need-to-know-FEATURE.png","width":1500,"height":1500},{"@type":"BreadcrumbList","@id":"https:\/\/www.imsm.com\/south-africa\/news\/iso-27001-for-businesses-everything-you-need-to-know\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.imsm.com\/south-africa\/"},{"@type":"ListItem","position":2,"name":"ISO 27001 for businesses: Everything you need to know"}]},{"@type":"WebSite","@id":"https:\/\/www.imsm.com\/south-africa\/#website","url":"https:\/\/www.imsm.com\/south-africa\/","name":"IMSM ZA","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.imsm.com\/south-africa\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"af-ZA"},{"@type":"Person","@id":"https:\/\/www.imsm.com\/south-africa\/#\/schema\/person\/990a6ba5dfd82cda313e2dd00eb363b0","name":"amywright","image":{"@type":"ImageObject","inLanguage":"af-ZA","@id":"https:\/\/www.imsm.com\/south-africa\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/b9a7d7e0f867d04d3ec6ad1557548ab8?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/b9a7d7e0f867d04d3ec6ad1557548ab8?s=96&d=mm&r=g","caption":"amywright"},"url":"https:\/\/www.imsm.com\/south-africa\/news\/author\/amywright\/"}]}},"_links":{"self":[{"href":"https:\/\/www.imsm.com\/south-africa\/wp-json\/wp\/v2\/posts\/5181","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.imsm.com\/south-africa\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.imsm.com\/south-africa\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.imsm.com\/south-africa\/wp-json\/wp\/v2\/users\/25"}],"replies":[{"embeddable":true,"href":"https:\/\/www.imsm.com\/south-africa\/wp-json\/wp\/v2\/comments?post=5181"}],"version-history":[{"count":2,"href":"https:\/\/www.imsm.com\/south-africa\/wp-json\/wp\/v2\/posts\/5181\/revisions"}],"predecessor-version":[{"id":5187,"href":"https:\/\/www.imsm.com\/south-africa\/wp-json\/wp\/v2\/posts\/5181\/revisions\/5187"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.imsm.com\/south-africa\/wp-json\/wp\/v2\/media\/5185"}],"wp:attachment":[{"href":"https:\/\/www.imsm.com\/south-africa\/wp-json\/wp\/v2\/media?parent=5181"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.imsm.com\/south-africa\/wp-json\/wp\/v2\/categories?post=5181"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.imsm.com\/south-africa\/wp-json\/wp\/v2\/tags?post=5181"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}