Information Security and ISO/IEC 27001
Information security management (InfoSec) has come to occupy an important place in many if not most IT-related industries, and language services are no exception. Despite its importance, it is not a frequent topic of discussion. Yet the fact that intellectual property and products and content yet-to-be released are exchanged and modified between clients and service providers places a special emphasis on this issue.
This article aims to address some of the important InfoSec considerations as applicable specifically to language services. ISO/IEC 27001 is a globally recognized standard for the management of information security. The purpose of ISO/IEC 27001 is to help organizations establish and maintain an Integrated Security Management System (ISMS).
ISO/IEC 27001 standard for information security and its alignment with ISO/IEC 9001 (quality management) used in language services
Many companies, if they have not already decided to adhere to ISO/IEC 9001, are at least considering it. The reasons for fostering a quality management system are clear and are a good sign of a company's maturity.
As with any management system, it needs to integrate all relevant components of a business with all other management systems within a company to help ensure focus on business goals and objectives.
ISO/IEC 27001 is designed to integrate fully with ISO/IEC 9001 and leverage many similar requirements. The resulting management system (IMS) helps create consistency, improve communication and optimize business practices by balancing conflicting objectives, responsibilities, processes, resources and relationships.
To continue reading this article, please complete this simple form below.