Wednesday, 12 October 2011

ISO27001? - Let the force be with you … (not against you)

Data security reminds me of global warming; it is an ever encroaching force in which we seem powerless to resist. Our thirst for data, its collection, availability and the sheer number of ways in which it can be accessed is mesmerising. So much so that the number of regulations acting in equal and opposite force has left communication companies like us facing the twin gauntlets of the law and those of whom we hold information.

Well, don’t you know it; there is a way in which you can live with the force, which admittedly comes with some pain – but hey no pain no gain! –and that is ISO27001 Information Security Standard. I know what you are thinking, I can hear the yawns already – another tiresome quality accreditation, hard to obtain, impossible to police and despised by the staff that have to pay attention to it.

Well, partly true, but with some (not inconsiderable) focussed effort, the sunny uplands of ISO27001 can be quite uplifting. And before being cast in the role ‘anorak’, this bit of regulation train spotting will make a profound difference to how your company is perceived by its clients and prospects, whilst being the catharsis of data management if handled with the right attitude.

Comfortingly it did prove that our systems were in pretty good nick before accreditation. So now we proudly fly our ISO flag, confident that it helps to open doors to new contracts, makes our existing clients very happy and secure and wouldn’t you know it – it has actually helped our sceptical workforce by reducing their paperwork and misunderstandings about the ‘monster’ data security; and by making sense of and seeing the benefits of the apparently incomprehensible.

No comments: