IT and Service Management
Companies around the world, ranging from all business sectors, see DQS as their trusted partner management systems certification. Find out what we have to offer via the overview below, or contact us to see how we can be of service.
DQS would like to inform you of the publication of the new ISO/IEC 27001:2013 standard . We are able to offer you certification based on the current standard immediately.
If your Organization has already implemented an information security management system according to ISO/IEC 27001, you should modify your system in time to satisfy the requirements of the new standard. There have been quite a few changes, e.g. ISO/IEC 27001:2013 contains only 113 rather than 133 controls. However, this does not
mean that your effort can be reduced, as some requirements have gained in importance that have so far mattered only peripherally. An overview of the most important changes can be found here (as well as under “downloads” and “links” on this webpage).
If you are interested in introducing an information security management system according to ISO/IEC 27001, the most important advantages can be summarized as follows: the consistent alignment of your company processes to the standard demonstrably leads to continuous improvement of the level of security, reduces existing risks, improves adherence to compliance demands, reduces supervisor liability, enhances employee awareness and improves customer satisfaction.
AVAILABILITY OF THE STANDARDS
Starting in October 2013, you will be able to order the aforementioned standard ISO/IEC 27001:2013 in printed form from the ISO store or the Beuth Verlag printing house (in English). In conjunction with ISO/IEC 27001:2013, the standard ISO27002 has also been&nb
We recommend that organizations that are already certified proceed with transition to the new standard in due time, so as not to have an invalid certificate according to the old ISO/IEC 27001:2005 on their hands. This will also help to prevent audits outside of the regular audit cycle from becoming necessary.
After the deadline of October 1st, 2015, the old standard (ISO/IEC 27001:2005) will no longer be valid, even if the certificate should have a longer period of validity.