ISO/IEC 27001

ISO/IEC 27001 is an international standard that stipulates information security management system requirements and was published by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). ISO/IEC 27001 describes the requirements for establishing, implementing, maintaining, managing, and continuous improvement of information security management systems, and the purpose of these standards is to help organizations better protect information assets.

< ISO/IEC 27001 >

The need for ISO/IEC 27001 Certification

• •  There is a need for comprehensive and systematic management and certification of information protection.
• •  When demonstrating compliance with relevant laws and regulations, objectivity can be secured.
• •  Regular audit process allows continuous monitoring of performance and improvement.
• •  Able to defend and respond to unexpected situations such as hacking and leakage.
• •  Improve your company's image by meeting transaction requirements and protecting customer information.

“ISO/IEC 27001 Auditor” registration requirement of GPC

• check Education level beyond secondary graduation
• check Over 5 years of work experience (including at least 2 years of experience related to information security management)
• check Completion of ISO/IEC 27001 Auditor/Lead Auditor training
• check Pass knowledge and attribution examination of GPC
• check Audit log of at least 20M/D within 3 years