Date: Thursday, 3rd March 2016
Time: 17h00 for 17h30
Venue: Santam Head Office, 1 Sportica Crescent, Tygervalley, 7530
Date: Monday, 11 April 2016
Venue: NMMU Conference Centre, North Campus, Port Elizabeth
An Information Security Management System (ISMS) is a way to protect and manage information within an organisation based on a risk based approach. The ISO 27001: 2013 standard provides the requirements for establishing, implementing, maintaining and continually improving an ISMS. The ISO 27001 standard can often be misunderstood and may not always be interpreted in the correct manner.
Based on this, Mobius have developed a practical approach to implementing an ISMS. The objective of this presentation will be to provide:
• An overview of the ISO27001 standard;
• A practical approach as well as guidelines to consider when implementing an ISMS; and
• An overview of key artefacts to consider when developing an ISMS.
Patrick Ryan (CISM, CISA, CRISC, ITIL) has 18 years of IT management consulting experience which has provided insight into a multitude of industries, business practices and technologies.
Prior to starting Mobius Consulting Patrick headed KPMG’s global methodology development for IT governance and sourcing and was the partner in charge of the KPMG Cape Town IT Advisory practice.
Patrick’s practical approach helps clients resolve their IT risk and compliance problems and “actualise change”. Patrick key focus areas are information security and IT governance.