ISO/IEC 27001 – Information Security Management System

The international standard ISO 27001 describes the requirements for an information security management system (ISMS).

Information security means the protection of information and information systems against unauthorised access, use, disclosure, disruption, modification or destruction. For over twenty years, the most important principles of information security have been (confidentiality, integrity and availability – also known as the ‘CIA triad’)). Information Security Management System (ISMS) is part of a general management system in companies and promotes the security of information related to risk management.

An Information Security Management System (ISMS) protects your sensitive data. Aligned with ISO 27001, it provides a structured framework to protect people, processes and IT systems. By implementing an ISMS, you minimise the risks of data breaches, protect your company's reputation and comply with regulations, ultimately protecting your business and image.

Whether you are a small startup or a large enterprise, information security is of paramount importance.

The principal concept behind an ISMS for an organisation is the design, implementation and maintenance of a coherent totality of processes and systems for the effective management of information accessibility. Just as in the case of all management processes, an ISMS must remain effective and efficient in the long term, and has to be modified in accordance with changes in the internal organisation and the external environment.

ISO 27001 provides a structured approach to managing your organisation's information security risks. By implementing an ISMS, you gain a competitive advantage, improve your brand reputation and build customer trust. This internationally recognised standard promotes a culture of continuous improvement and can be easily integrated with other management systems.

By working with Vinçotte, a Kiwa Company, you can effectively manage your security risks, build trust with customers, employees and partners and gain a competitive advantage. Vinçotte's expertise extends across the entire ISO 27000 family, including cloud security (ISO 27017), so you can be assured of the support you need to navigate the changing information security landscape.

The benefits of ISO 27001 certification

Protect your information - by helping you manage risk and improve processes, ISO 27001 allows you to protect your information and that of your customers.
Enhance your reputation - an ISO 27001 certification shows that you have taken steps to protect data, enhancing your reputation.
Avoid financial fines - by managing risk with ISO 27001, you can reduce the likelihood of a data breach and avoid fines.
Exchange information securely - with ISO 27001, you can ensure that your processes are secure enough to exchange sensitive information with customers and partners.
Comply with regulations - ISO 27001 helps ensure you comply with regulations, such as the European Union's General Data Protection Regulation (EU GDPR).
Improve competitiveness - with ISO 27001 certification, you can differentiate yourself from competitors by demonstrating your commitment to security standards.
Strengthen your relationships - with ISO 27001, you can demonstrate that you take customers' and partners' data and information assets seriously.

Legislations

Intellectual property rights
Protection of information about the organisation
Protection of information and privacy of personal information
Prevention of misuse of information processing facilities
Regulation of cryptographic controls

Norms and Standards

ISO/IEC 27001: 2013 Information technology- Security techniques – Information Security Management Systems – Requirements.

Regardless of your industry or size, ISO 27001 provides a robust framework for managing the security of your organisation's critical information.

Whether it is financial data, intellectual property or personnel records - and whether you manage your own or third-party information - ISO 27001 provides a structured approach to identifying, assessing and mitigating information security risks.

Basis for the 27k family:

ISO/IEC 27002 Information technology – Security techniques – Code for information security
ISO/IEC 27003 Guide for implementation
ISO/IEC 27004 ISMS measurements
ISO/IEC 27005 Risk Management approach
ISO/IEC 27006 Certification Process
ISO/IEC 27007 Auditing system
ISO/IEC 27008 Auditing controls
ISO/IEC 27011 Guidelines for the telecommunication industry
ISO/IEC 27013 Integration with ITSMS (Information Technology Service Management Systems)
ISO/IEC 27014 Governance
ISO/IEC 27015 Financial and insurance sector
ISO/IEC 27031 Business continuity
ISO/IEC 27032 Cyber security
ISO/IEC 27033 IT network security
ISO/IEC 27034 Application security

Interested in this solution? Contact us!

Contact

Ask your question directly to the specialised team within your sector.

Need more info or a qoute?

Request info or qoute

Apply for a job?

Working for Vinçotte

Name	Hostname	Vendor	Expiry
CRAFT_CSRF_TOKEN	www.vincotte.be		Session
This cookie will be created to facilitate protection against cross-site request forgeries. This helps to safeguard data as it is submitted through forms on the website.
CraftSessionId	www.vincotte.be		Session
Craft relies on PHP sessions to maintain sessions across web requests. That is done via this PHP session cookie.
cookiehub	.vincotte.be	CookieHub	365 days
Used by CookieHub to store information about whether visitors have given or declined the use of cookie categories used on the site.

Name	Hostname	Vendor	Expiry
lidc	.linkedin.com	LinkedIn Ireland Unlimited Company	1 day
Used by LinkedIn for routing.
li_gc	.linkedin.com	LinkedIn Ireland Unlimited Company	180 days
Used by LinkedIn to store consent of guests regarding the use of cookies for non-essential purposes
e349f3cd050b66ac7b4f9b12d0345804_commerce_cart	www.vincotte.be		365 days

Name	Hostname	Vendor	Expiry
_ga	.vincotte.be	Google	400 days
Contains a unique identifier used by Google Analytics to determine that two distinct hits belong to the same user across browsing sessions.
_gat_	.vincotte.be	Google	1 hour
Used by Google Analytics to throttle request rate (limit the collection of data on high traffic sites)
_gid	.vincotte.be	Google	1 day
Contains a unique identifier used by Google Analytics to determine that two distinct hits belong to the same user across browsing sessions.
bcookie	.linkedin.com	LinkedIn Ireland Unlimited Company	365 days
This is a Microsoft MSN 1st party cookie for sharing the content of the website via social media.
_ga_	.vincotte.be	Google	400 days
Contains a unique identifier used by Google Analytics 4 to determine that two distinct hits belong to the same user across browsing sessions.

Name	Hostname	Vendor	Expiry
_fbp	.vincotte.be	Meta Platforms	90 days
Facebook Pixel advertising first-party cookie. Used by Facebook to track visits across websites to deliver a series of advertisement products such as real time bidding from third party advertisers.
UserMatchHistory	.linkedin.com	LinkedIn Ireland Unlimited Company	30 days
Contains a unique identifier used by LinkedIn to determine that two distinct hits belong to the same user across browsing sessions.
bscookie	.www.linkedin.com	LinkedIn Ireland Unlimited Company	365 days
Used by the social networking service, LinkedIn, for tracking the use of embedded services.
AnalyticsSyncHistory	.linkedin.com	LinkedIn Ireland Unlimited Company	30 days
Used by LinkedIn to store information about the time a sync with the lms_analytics cookie took place for users in the Designated Countries
_hjSessionUser_	.vincotte.be	Hotjar	365 days
Hotjar cookie. This cookie is set when the customer first lands on a page with the Hotjar script. It is used to persist the Hotjar User ID, unique to that site on the browser. This ensures that behavior in subsequent visits to the same site will be attributed to the same user ID.
_hjSession_	.vincotte.be	Hotjar	1 hour
Used by Hotjar to hold current session data.
lastExternalReferrerTime		Meta Platforms	Persistent
Detects how the user reached the website by registering their last URL-address.
lastExternalReferrer		Meta Platforms	Persistent
Detects how the user reached the website by registering their last URL-address.
YSC	.youtube.com	Google	Session
This cookie is set by YouTube video service on pages with YouTube embedded videos to track views.
VISITOR_INFO1_LIVE	.youtube.com	Google	180 days
Set by YouTube and used for various purposes, including analytical and advertising.
VISITOR_PRIVACY_METADATA	.youtube.com	Google	180 days