ISO 27001 is an Information Security Management System (ISMS) standard published in October 2005 by the International Organization for Standardization (ISO). It formally specifies a management system to bring information security under explicit management control.

The ISO 27001:2005 standard requires that managers:

• Systematically examine the organization's information security risks, taking account of the threats, vulnerabilities and impacts;

• Design and implement a coherent and comprehensive suite of information security controls and/or other forms of risk treatment (such as risk avoidance or risk transfer) to address those risks that are deemed unacceptable; and,

• Adopt an overarching management process to ensure that the information security controls continue to meet the organization's information security needs on an ongoing basis.

What's the best way to avoid a fate endured by the likes of Epsilon and the State of Texas? First, recognize the many potential pitfalls of information technology. A data breach can have far-reaching implications, including loss of time, money, productivity and client confidence.  

Then, get help. Our upcoming ISO 27001:2005 courses are a great way to bring some security to your vital information.

AS9100 is a widely adopted and standardized quality management system for the aerospace and defense industries. They have recognized AS9100 as a way to continually improve quality and on-time delivery within their supply chain.

Most of the major aircraft and engine manufacturers, such as Boeing, General Electric's Aircraft Engine division (GEAE), Pratt & Whitney, Rolls-Royce and Allison require their suppliers to be certified to AS9100.

The recent addition of Sue Snyder gives D´Ardenne Associates broad expertise in aerospace quality management systems. Sue has 15 years of experience in the industry, including leadership in development, implementation, maintenance and auditing of business management systems. She served as a quality management systems professional for commercial and government contractors supporting military entities throughout the United States.

Learn more about our aerospace quality management systems and begin to grow your business.

You may have noticed a new image on our web site. It's the D´Ardenne Associates gear, and it illustrates how we help organizations put processes in motion to work more efficiently. From support processes to customer processes to management processes, this approach shows the value of having the right systems in place to make the most of  management.

Being the ISO sticklers we are, you'll be pleased to know that the gear meets the Quality Manual Requirement of ISO 9001:2008, clause 4.2.2c. 

May 23-May 26
ISO 27001:2005 TPECS
Information Security 

Jun 27-Jul 1
BS 25999-2 Lead Auditor IRCA
Business Continuity 

Click here to register.

As a reader, you have at least a working understanding of ISO. Now's the time to cash in on your knowledge. Answer this question and you'll be entered into a drawing to win a $50 VISA gift card. 

What is the term for a zombie computer army? 

If you know the answer, please e-mail steve@dardenneassociates.com by May 10. The winner will be announced in the next issue. Good luck!

Congratulations to last month's winner!   

Louis Kanobayire of Kigali, Rwanda, knew that ISO 9001 was first published in 1987.