By Jeff Bennison, Director of Security Consulting, Professional Services EMEA, Rackspace Technology
Adherence to strong cyber security standards is as important as ever for companies in, and trying to sell to, highly regulated industries, such as financial services, government, and critical infrastructure. Not only does it ensure they understand their organisational risk and keep their data safe, but it could make the difference when securing contracts with companies that demand cyber excellence across their supply chain.
As such, organisations must ensure they are keeping up to date with the latest standards and they don’t leave themselves exposed. Earlier this year, the ISO/IEC 27002 information security standard underwent a series of highly welcome updates that security teams now need to implement to remain compliant.
The standard is the associated document to ISO 27001, last revised in 2013, and gives detailed implementation guidance for these existing directives. Many of the new controls outlined in the update ensure businesses are adapting to the new security landscape. For example, with the explosion of cloud in recent years, there was an…