Webinar: ISO/IEC 27002:2022 - Information security controls update
Event description
The changes to ISO/IEC27001 and 27002 in 2022 represent a leap forward in the effectiveness of Information Security Management Systems (ISMS). Quick and effective adoption of the latest global best practice is essential to ensure trust in your organization’s ability to protect information.
The ISO/IEC 27002 standard, which serves as a reference for establishing controls for information risk management, has been updated. These changes reflect the concern of organizations globally around new risks that have emerged in a more digitized world, thus facilitating the continuation of your digital transformation plans and/or adoption of new cybersecurity strategies. Most likely your organization will need to refresh the controls that have been adopted around your management system and/or information security best practices.
Join a team of experts to understand not only what is changing, but why, and how to use these changes to improve protection of your information assets whilst aligning with global cybersecurity frameworks.
Key changes include:
- Updated controls aligned with current business practices and associated threats
- New “attributes” to enable alignment with different risk management methodologies including global cybersecurity frameworks
- Simplified and streamlined grouping of controls
- Greater clarity on management requirements in line with ISO harmonized structure
This session will cover the changes, the benefits in adopting them, guidelines on how to implement them and how to get the most from your updated ISMS.
Jodie Siganto, Information Security and Privacy Expert, BSI
Jodie is recognised as one of Australia’s leading security and privacy professionals, working with small and large organisations in both the privacy and public space, delivering legal and consulting services. Jodie also has extensive training experience. She been delivering training affiliated with leading certification bodies such as British Standards Institute (BSI), (ISC)2 and IAPP for over 15 years. She regularly receives rave reviews from attendees.
Graduating as a lawyer, after 5 years in private practice, Jodie spent 10 years working as in-house counsel for computer companies in Sydney and Singapore.
In 2000, She co-founded data security firm, Bridge Point Communications supporting the development of a security consulting practice. She was involved in her first ISO 27001 certification over 15 years ago, in 2005. In 2014, she completed a PhD at QUT, in privacy and information security law.
More recently, Jodie established Privacy 108 Consulting Pty Ltd, a consulting and legal firm specialising in privacy and cyber security.
She has worked with a wide range of international and local organisations in both the public and private sector, helping to design and implement programs to uplift privacy maturity including governance, policies, training and privacy risk and impact assessments. As a legal practitioner, Jodie also provides specialist legal advice on the application of privacy and data protection laws, data protection agreements and other contractual terms and data breach notification.
Jodie is committed to developing and supporting privacy and security practitioners in Australia and has been involved with a range of industry groups, including as the Chair of the AISA Policy Committee and AISA Education Director. As well as delivering training for BSI, Dr Siganto is a certified instructor for the International Association of Privacy Practitioners (IAPP) and for (ISC)2.
Tickets for good, not greed Humanitix dedicates 100% of profits from booking fees to charity