The principles on which ISO 27001 Information Security Management System is based are as follows:
Privacy: Confidentiality means that the access of persons who are not authorized to access the information to be protected within the organization is closed. Or to prevent the disclosure of this information by unauthorized persons. So the information is confidential and should be protected.
availability: The availability of information means that information is immediately available to authorized persons whenever it is needed. Information should be available and ready to use, even if the organization is experiencing a problem. What is essential here is that people who have access to information have access to information.
Integrity: The integrity of the information, as it is at the source of the information, means that it is accessible to the persons who are unchanged, distorted and consistently authorized. If the information is altered or altered in part, the integrity of the information cannot be mentioned.
An organization that attaches importance to information security and aims to protect information should classify the points of information and decide on the method of protection of information. The Information Security Management System is a system for ensuring and maintaining this security. ISO 27001. For more information on the basic principles of the Information Security Management System, please contact the experienced managers and employees of the TURCERT certification body.
